WZHMIJJ commented on issue #22371: URL: https://github.com/apache/pulsar/issues/22371#issuecomment-2024625669
Sorry, maybe I was not clear enough. What I was talking about was the Java client we are using. We could use the option with the JWT you have mentioned, but that would mean that every time the JWT expires we would have to update it in our systems and production as well. That also normally means a restart of the application that uses this JWT token. We use a OAuth2 authentication mechanism, but we do not have the `client_id` and `client_secret` that is being used in OAuth2 Java client implementation. In our case we use the _private_key_jwt_ method that instead of the `client_id` and `client_secret`, uses `client_assertion_type` which is `urn:ietf:params:oauth:client-assertion-type:jwt-bearer` and `client_assertion` that contains information for client authentication. It must be digitally signed using a private key. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: [email protected] For queries about this service, please contact Infrastructure at: [email protected]
