Loading...

XML

Word

Printable

Type: Feature Request
Resolution: Unresolved
Priority: Major
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

~~WFCORE-6787~~ introduced the ability to configure the allowed jku values for a token-realm using a new wildfly.elytron.jwt.allowed.jku.values.<realm-name> system property.

We should add the ability to configure this via Elytron subsystem configuration, i.e., in the jwt configuration for a token-realm, we should add the ability to configure the allowed jku values.

is related to

WFCORE-6787 Add the ability to configure the allowed jku values for a token-realm using a new system property for CVE-2024-1233

Resolved

WFLY-19226 CVE-2024-1233: Add documentation for the new wildfly.elytron.jwt.allowed.jku.values.<realm-name> system property

Closed

Assignee:: Unassigned

Reporter:: Farah Juma

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Created:: 2024/04/16 8:39 PM

Updated:: 2024/04/16 8:40 PM

Details

Description

Attachments

Issue Links

Easy Agile Planning Poker

Activity

People

Dates