Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-10268

Add a token based authentication module

    Details

    • Impact type:
      API added
    • Upgrade notes:
      Hide

      Added:

      • TokenAuthenticationService
      • TokenAuthenticator
      • TokenAuthenticationServlet
      Show
      Added: TokenAuthenticationService TokenAuthenticator TokenAuthenticationServlet

      Description

      This plugin will allow to authenticate a user with a token sent as a request header.
      This implies:

      • A Servlet bound on basic authentication to get a generated token in the first place given some user information (username, application name, device name, device description, permission).
      • A storage service to map tokens to users
      • An authentication plugin to handle requests with a token header, using the Trusting_LM login module
      • A view for the current user to manage its token (for now, ability to revoke it only). For now, as this module is mostly dedicated to Nuxeo Drive (see NXP-10269), it only provides an XHTML view including a layout, but this view is not included by default in the User Center, it will be used in the specific "Nuxeo Drive" tab of the User Center.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 2 days, 4 hours Original Estimate - 2 days, 4 hours
                  2d 4h
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 3 days, 5 hours
                  3d 5h

                    PagerDuty

                    Error rendering 'com.pagerduty.jira-server-plugin:PagerDuty'. Please contact your Jira administrators.