philipptrenz opened a new pull request, #580: URL: https://github.com/apache/syncope/pull/580
Microsoft Entra uses self-issued access tokens, e.g. for SCIM provisioning requests, to authenticate on external systems. To authorise these requests in Syncope, they must be verified against public keys published by Microsoft in a JSON Web Key Set (JWKS). This PR adds a `MSEntraAccessTokenJWSVerifier` implementation, which loads a JWKS provided by Microsoft from the corresponding endpoint, caches the public keys for the recommended duration and refetches them afterwards. The `MSEntraJWTSSOProvider` implementation allows to verify and authorize requests coming from Microsoft Entra based on the JSON Web Token (JWT) sent along in the request header. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. To unsubscribe, e-mail: dev-unsubscr...@syncope.apache.org For queries about this service, please contact Infrastructure at: us...@infra.apache.org
