Jan Høydahl created SOLR-13734:
----------------------------------
Summary: JWTAuthPlugin to support multiple issuers
Key: SOLR-13734
URL: https://issues.apache.org/jira/browse/SOLR-13734
Project: Solr
Issue Type: Task
Security Level: Public (Default Security Level. Issues are Public)
Components: security
Reporter: Jan Høydahl
Assignee: Jan Høydahl
In some large enterprise environments, there are more than one [Identity
Provider|https://en.wikipedia.org/wiki/Identity_provider] to issue tokens for
users. The classic example from the public internet is logging in to a do a
site and choose between multiple pre-defined IdPs (such as Google, GitHub,
Facebook etc).
In the enterprise world the IdPs will not be these public providers but IdPs
inside various networks inside the enterprise.
The JWT plugin currently supports exactly one IdP. This JIRA will in the first
phase extend support for multiple IdPs for access token validation only, not
Admin UI login, meaning there will be a "main IdP" and optionally multiple
"additional IdPs". Admin UI login will be towards main IdP but validation of
access tokens may be with any of the additional IdPs.
--
This message was sent by Atlassian Jira
(v8.3.2#803003)
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
