This is an automated email from the ASF dual-hosted git repository.
jan pushed a commit to branch main
in repository https://gitbox.apache.org/repos/asf/couchdb-documentation.git
The following commit(s) were added to refs/heads/main by this push:
new 1c3f870 fix(jwt): we follow the spec now
1c3f870 is described below
commit 1c3f87022077ba3a8bc83a84af0e8a579bf5b632
Author: Jan Lehnardt <[email protected]>
AuthorDate: Mon Nov 1 16:09:09 2021 +0100
fix(jwt): we follow the spec now
Closes https://github.com/apache/couchdb/issues/3811
---
src/api/server/authn.rst | 3 +--
1 file changed, 1 insertion(+), 2 deletions(-)
diff --git a/src/api/server/authn.rst b/src/api/server/authn.rst
index 061c05a..45e4d45 100644
--- a/src/api/server/authn.rst
+++ b/src/api/server/authn.rst
@@ -379,8 +379,7 @@ Additionally, CouchDB can be configured to reject JWT
tokens that are
missing a configurable set of claims (e.g, a CouchDB administrator
could insist on the ``exp`` claim).
-All claims presented in a JWT token are validated if presented, regardless of
whether they
-are required.
+Only claims listed in required checks are validated. Additional claims will be
ignored.
Two sections of config exist to configure JWT authentication;
