lucene-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jan Høydahl (Jira) <j...@apache.org>
Subject [jira] [Created] (SOLR-13734) JWTAuthPlugin to support multiple issuers
Date Tue, 03 Sep 2019 08:26:00 GMT
Jan Høydahl created SOLR-13734:
----------------------------------

             Summary: JWTAuthPlugin to support multiple issuers
                 Key: SOLR-13734
                 URL: https://issues.apache.org/jira/browse/SOLR-13734
             Project: Solr
          Issue Type: Task
      Security Level: Public (Default Security Level. Issues are Public)
          Components: security
            Reporter: Jan Høydahl
            Assignee: Jan Høydahl


In some large enterprise environments, there are more than one [Identity Provider|https://en.wikipedia.org/wiki/Identity_provider] to
issue tokens for users. The classic example from the public internet is logging in to a do
a site and choose between multiple pre-defined IdPs (such as Google, GitHub, Facebook etc).

In the enterprise world the IdPs will not be these public providers but IdPs inside various
networks inside the enterprise.

The JWT plugin currently supports exactly one IdP. This JIRA will in the first phase extend
support for multiple IdPs for access token validation only, not Admin UI login, meaning there
will be a "main IdP" and optionally multiple "additional IdPs". Admin UI login will be towards
main IdP but validation of access tokens may be with any of the additional IdPs.



--
This message was sent by Atlassian Jira
(v8.3.2#803003)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@lucene.apache.org
For additional commands, e-mail: dev-help@lucene.apache.org


Mime
View raw message