[jboss-jira] [JBoss JIRA] (ELY-559) Token-based authentication should forward authentication
Pedro Igor (JIRA)
issues at jboss.org
Thu Jun 8 18:55:00 EDT 2017
[ https://issues.jboss.org/browse/ELY-559?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13418550#comment-13418550 ]
Pedro Igor commented on ELY-559:
--------------------------------
One of the reasons for deferring to v2 is that you can map information from a token as attributes. That is what we are doing for both JWT and OAuth2 access token support.
So, forward the token would be really useful if the application need to call another service. Although you may hit audience restrictions when sending the same token to another service.
> Token-based authentication should forward authentication
> --------------------------------------------------------
>
> Key: ELY-559
> URL: https://issues.jboss.org/browse/ELY-559
> Project: WildFly Elytron
> Issue Type: Enhancement
> Components: Authentication Mechanisms
> Reporter: David Lloyd
> Assignee: Pedro Igor
> Fix For: 1.1.0.Beta54
>
>
> Mechanisms that handle BearerTokenCredetials (ELY-557) should forward them as public or private credentials (ELY-473 / https://github.com/wildfly-security/wildfly-elytron/pull/434 ).
--
This message was sent by Atlassian JIRA
(v7.2.3#72005)
More information about the jboss-jira
mailing list