Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-10268

Add a token based authentication module

    XMLWordPrintable

    Details

    • Tags:
    • Impact type:
      API added
    • Upgrade notes:
      Hide

      Added:

      • TokenAuthenticationService
      • TokenAuthenticator
      • TokenAuthenticationServlet
      Show
      Added: TokenAuthenticationService TokenAuthenticator TokenAuthenticationServlet

      Description

      This plugin will allow to authenticate a user with a token sent as a request header.
      This implies:

      • A Servlet bound on basic authentication to get a generated token in the first place given some user information (username, application name, device name, device description, permission).
      • A storage service to map tokens to users
      • An authentication plugin to handle requests with a token header, using the Trusting_LM login module
      • A view for the current user to manage its token (for now, ability to revoke it only). For now, as this module is mostly dedicated to Nuxeo Drive (see NXP-10269), it only provides an XHTML view including a layout, but this view is not included by default in the User Center, it will be used in the specific "Nuxeo Drive" tab of the User Center.

        Attachments

          Issue Links

          depends on

          Task - A task that needs to be done. NXP-10296 Refactor TokenAuthenticationJettyFeature to take advantage of the WebXml configurability of the JettyFeature

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved
          is required by

          New Feature - A new feature of the product, which has yet to be developed. NXP-10393 Allow edition of the device description in the authentication token bindings UI

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Open

          New Feature - A new feature of the product, which has yet to be developed. NXP-10790 Make it possible to revoke / delete a token from the client

          • Major - Major loss of function.
          • Resolved

          New Feature - A new feature of the product, which has yet to be developed. NXP-10306 Automation client: add an API to get a session using a token

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Resolved

          Task - A task that needs to be done. NXP-11147 Token authentication: display token management view in User center

          • Major - Major loss of function.
          • Open

          Task - A task that needs to be done. NXP-10269 Use token based authentication instead of basic one

          • Major - Major loss of function.
          • Resolved

          User story - Created by Jira Software - do not edit or delete. Issue type for a user story. NXP-10394 Add a lifetime to authentication token and ability to renew it

          • Minor - Minor loss of function, or other problem where easy workaround is present.
          • Open

          User story - Created by Jira Software - do not edit or delete. Issue type for a user story. NXP-10880 Make the Jenkins job configurable to build against 5.6 and use PostgreSQL

          • Major - Major loss of function.
          • Resolved

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 2 days, 4 hours Original Estimate - 2 days, 4 hours
                  2d 4h
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 3 days, 5 hours
                  3d 5h