Uploaded image for project: 'Thorntail'
  1. Thorntail
  2. THORN-1952

MP JWT: can't use value of the "upn" claim for roles mapping, even though the TCK suggests it's possible

    Details

    • Type: Enhancement
    • Status: Closed (View Workflow)
    • Priority: Major
    • Resolution: Rejected
    • Affects Version/s: None
    • Fix Version/s: 2018.5.0
    • Component/s: microprofile
    • Labels:
      None

      Description

      This file https://github.com/wildfly-swarm/wildfly-swarm/blob/master/testsuite/microprofile-tcks/jwt-auth/src/test/resources/jwt-roles.properties in the Swarm MP JWT TCK suggests that it's possible to use the upn claim value for role mapping. However, that's not possible; only names of groups (from the groups claim) can be used.

      If that is supposed to be possible, it would be easy to implement (would be a small change in JWTLoginModule.commit), so I guess this is more of a question: should it be possible?

        Gliffy Diagrams

          Attachments

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                lthon Ladislav Thon
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: