Bolke de Bruin created ATLAS-3153:
-------------------------------------
Summary: Support OpenID Connect directly rather than through Knox
Key: ATLAS-3153
URL: https://issues.apache.org/jira/browse/ATLAS-3153
Project: Atlas
Issue Type: Improvement
Reporter: Bolke de Bruin
The current SSO implementation with Apache Knox is limiting SSO
interoperability to Apache Knox. Knox uses JWT verification which could easily
be extended to allow for direct OpenID Connect support and doesn't require
organizations to deploy Knox.
Required changes:
* Pickup bearer token from headers
* Improve and standardize redirecting
* Optionally: obtain certificates from well_known uri
* Optionally: obtain user groups from userinfo endpoint rather than UGI
--
This message was sent by Atlassian JIRA
(v7.6.3#76005)
