[jira] [Commented] (NIFI-6280) Re-evaluate handling of Authorization bearer token during JWT logout

Wed, 22 May 2019 17:42:25 -0700 


    [ 
https://issues.apache.org/jira/browse/NIFI-6280?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16846320#comment-16846320
 ] 

ASF subversion and git services commented on NIFI-6280:
-------------------------------------------------------

Commit fe68d43e1dfd00807ccbc43fd43bff73d49de26c in nifi's branch 
refs/heads/master from thenatog
[ https://gitbox.apache.org/repos/asf?p=nifi.git;h=fe68d43 ]

NIFI-6280 - Broke out the matching for /access/knox/** and /access/oidc/** to 
allow the Jetty security filters to be applied in the /access/oidc/logout and 
/access/knox/logout cases.
NIFI-6280 - Updated terminology in JwtAuthenticationFilter to authentication 
instead of authorization. Added stricter token parsing using an explicit regex 
pattern. Added tests.
NIFI-6280 - Updated terminology from Authorization to Authentication.
NIFI-6280 - Updated the access logout method to use getNiFiUserIdentity(). 
Updated javascript logout method to handle errors.
NIFI-6280 - Fixing checkstyle issues.
NIFI-6280 - Added some javadoc comments and logging. Renamed some variables for 
clarity. Fixed handling of exception when JWT does not match expected format.
NIFI-6280 - Cleaned up checkstyle, increased log severity level for logout 
action, and cleaned up Groovy syntax in test.

This closes #3482.

Signed-off-by: Andy LoPresto <[email protected]>


> Re-evaluate handling of Authorization bearer token during JWT logout
> --------------------------------------------------------------------
>
>                 Key: NIFI-6280
>                 URL: https://issues.apache.org/jira/browse/NIFI-6280
>             Project: Apache NiFi
>          Issue Type: Improvement
>          Components: Core Framework
>    Affects Versions: 1.9.2
>            Reporter: Andy LoPresto
>            Assignee: Nathan Gough
>            Priority: Major
>              Labels: jwt, logout, security
>          Time Spent: 4h 10m
>  Remaining Estimate: 0h
>
> The handling of the JWT for logging out can be improved (add unit tests, 
> handle string slicing more strictly, etc.). 
> See AccessResource line 769 and JwtService line 178. 



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Reply via email to