Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-27446

Improve openId provider descriptor to handle user info request authentication per bearer

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 10.10
    • Fix Version/s: 10.10-HF08, 11.1, 2021.0
    • Component/s: Open Id
    • Release Notes Summary:
      OenId provider descriptor handles user info request authentication per bearer.
    • Backlog priority:
      400

      Description

      Context

      While doing an OpenId authentication we fetch the user information from provider at some point.
      This call is performed by giving the access token as a query parameter, but all providers don't accept this kind of authentication.

      We want to improve OpenID provider in order to be able to choose between authentication though query parameters or through Authentication header.

      Technical solution

      This setting should be present on open id descriptor and retrieved while doing get user info request.

       

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - Not Specified
                  Not Specified
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 3 days
                  3d

                    PagerDuty

                    Error rendering 'com.pagerduty.jira-server-plugin:PagerDuty'. Please contact your Jira administrators.