Uploaded image for project: 'Nuxeo Enhanced Viewer'
  1. Nuxeo Enhanced Viewer
  2. NEV-67

Change used token from JWT to OAuth2 in ARender

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 1.0.2
    • Component/s: Nuxeo Connector
    • Tags:
    • Impact type:
      Configuration Change
    • Upgrade notes:
      Hide

      A new property nuxeo.arender.secret needs to be defined for the shared secret between ARender and Nuxeo

      Show
      A new property nuxeo.arender.secret needs to be defined for the shared secret between ARender and Nuxeo
    • Sprint:
      nxcore 11.1.3
    • Story Points:
      5

      Description

      Currently in ARender, JWT is used for authentication, but using it with a very low ttl leads to multiple unauthorized exceptions, as we don't have ways to refresh the token.
      We want to change the authentication flow :

      • Send the JWT from Nuxeo to ARender
      • Use this token to fetch an Oauth2 token
      • Use this fetched token for connection from ARender to Nuxeo

        Attachments

          Issue Links

          depends on

          New Feature - A new feature of the product, which has yet to be developed. JAVACLIENT-184 Handle refresh token when using OAuth2 authentication

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is related to

          Task - A task that needs to be done. NXP-26853 Remove okhttp dependency

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Improvement - An improvement or enhancement to an existing feature or task. NXP-27175 Improve OAuth2 error when jwt token doesn't exist or is invalid

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is required by

          Clean up - NXP-29907 Better error message on invalid OAuth2 grant type

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          Is referenced in

          [Captain Hook] PR for 10: #177 PR for 10: #177

          [Captain Hook] PR for 10: #209 PR for 10: #209

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 4 days
                  4d