> Kai
>
>
>
> *From:* Richard Feezel [mailto:rfee...@gmail.com]
> *Sent:* Tuesday, July 26, 2016 1:03 PM
> *To:* Zheng, Kai <kai.zh...@intel.com>
> *Cc:* kerby@directory.apache.org; cohei...@apache.org; Richard Feezel <
> richa...@prodentity.com>
>
>
e:
>
> > Hi Colm,
> >
> > Sorry for the very late response. I'm just back from a travel. My
> > answers to your questions are yes, and it's great if we could make it
> > all work seamlessly!
> >
> > Regards,
> > Kai
> >
> > -Origina
o:cohei...@apache.org]
Sent: Monday, July 18, 2016 7:15 PM
To: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Hi Kai,
I'm not convinced that the authorization data should be copied from TGT to
Service Ticket. For example, the JWT token could con
work
> seamlessly!
>
> Regards,
> Kai
>
> -Original Message-
> From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
> Sent: Friday, July 08, 2016 5:16 PM
> To: kerby@directory.apache.org
> Subject: Re: JWT pre-authentication - get JWT token on service side
>
&
PM
To: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Hi Kai,
> For example, when the identity token is used to issue a tgt, does a
> token
derivation of the useful attributes generated and put into the issued tgt?
By putting the token deri
.zh...@intel.com>
Cc: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
On Mon, Jul 4, 2016 at 4:01 PM, Zheng, Kai
<kai.zh...@intel.com<mailto:kai.zh...@intel.com>> wrote:
Regarding how to place the login module, I thought of putting it in k
token was encrypted?
Thanks again,
Colm.
>
> Regards,
> Kai
>
> -Original Message-
> From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
> Sent: Monday, July 04, 2016 7:52 PM
> To: kerby@directory.apache.org
> Cc: Zheng, Kai <kai.zh...@intel.com>
> Subject:
or so.
Regards,
Kai
-Original Message-
From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
Sent: Monday, July 04, 2016 7:52 PM
To: kerby@directory.apache.org
Cc: Zheng, Kai <kai.zh...@intel.com>
Subject: Re: JWT pre-authentication - get JWT token on service side
Thanks Jiajia
12:07 PM
To: Zheng, Kai <kai.zh...@intel.com>; kerby@directory.apache.org;
cohei...@apache.org
Subject: RE: JWT pre-authentication - get JWT token on service side
Hi Colm,
As Kai said, it's a bug in new module.
>>However, if I look at the existing TokenAuthLoginModule,
cCache.store(bout);
> os.close();
>
> // Now validate the ticket using GSS
> validateServiceTicket(bout.toByteArray());
> } catch (Exception e) {
> e.printStackTrace();
> Assert.fail();
> }
&
une 28, 2016 10:00 PM
> To: kerby@directory.apache.org
> Subject: Re: JWT pre-authentication - get JWT token on service side
>
> Hi Kai,
>
> Could you take a look at the @Ignore'd test-case I just committed:
>
>
> https://git1-us-west.apache.org/repos/asf?p=directory-ker
Hi Colm, I will look at this late of today. Hope it works for you.
-Original Message-
From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
Sent: Tuesday, June 28, 2016 10:00 PM
To: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Hi Kai
ing the Kerby API?
Thanks,
Colm.
>
> Regards,
> Kai
>
> From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
> Sent: Thursday, June 23, 2016 7:59 PM
> To: Zheng, Kai <kai.zh...@intel.com>
> Cc: kerby@directory.apache.org
> Subject: Re: JWT pre-authentication - get J
rtaigh [mailto:cohei...@apache.org]
Sent: Thursday, June 23, 2016 7:59 PM
To: Zheng, Kai <kai.zh...@intel.com>
Cc: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Hi Kai,
On Wed, Jun 22, 2016 at 3:11 PM, Zheng, Kai
<kai.zh...@intel.com<mailto:k
gt;
> Regards,
> Kai
>
> -Original Message-
> From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
> Sent: Wednesday, June 22, 2016 9:36 PM
> To: kerby@directory.apache.org
> Subject: Re: JWT pre-authentication - get JWT token on service side
>
> Hi all,
>
&g
ubject: Re: JWT pre-authentication - get JWT token on service side
Hi Kai,
On Wed, Jun 22, 2016 at 3:11 PM, Zheng, Kai
<kai.zh...@intel.com<mailto:kai.zh...@intel.com>> wrote:
I don't quite get your 2nd question. I don't find TokenIssuer class in Kerby
codebase.
Apologies, I m
gt; > token in the authorization data, then after decoding it, you could
> > extract token from it. I remembered we had defined the AuthzToken type
> > for this actually but guess it's not used yet.
> >
> > Regards,
> > Kai
> >
> > -Original Message-
&
olm O hEigeartaigh [mailto:cohei...@apache.org]
Sent: Wednesday, June 22, 2016 9:36 PM
To: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Hi all,
Some more questions on this task:
1) Kai, you mentioned the AuthzToken type. Is this defined somewhere
h [mailto:cohei...@apache.org]
> Sent: Friday, June 17, 2016 7:21 PM
> To: kerby@directory.apache.org
> Subject: Re: JWT pre-authentication - get JWT token on service side
>
> Thanks Kai and Jiajia!
>
> I'm trying to get access to the authorization data using the Kerby API
&
-Original Message-
From: Colm O hEigeartaigh [mailto:cohei...@apache.org]
Sent: Friday, June 17, 2016 7:21 PM
To: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Thanks Kai and Jiajia!
I'm trying to get access to the authorization data using
...@apache.org]
Sent: Thursday, June 16, 2016 7:19 PM
To: kerby@directory.apache.org
Subject: Re: JWT pre-authentication - get JWT token on service side
Thanks Kai. A few questions below.
On Thu, Jun 16, 2016 at 11:33 AM, Zheng, Kai <kai.zh...@intel.com> wrote:
>
> 1. For issuing service ticke
hEigeartaigh [mailto:cohei...@apache.org]
Sent: Thursday, June 16, 2016 5:54 PM
To: kerby@directory.apache.org
Subject: JWT pre-authentication - get JWT token on service side
Hi all,
For the JWT pre-authentication use-case, how can I get access to the token
information on the service side?
From
Hi all,
For the JWT pre-authentication use-case, how can I get access to the token
information on the service side?
>From the documentation: "The service authenticates the ticket, extracts the
token derivation, then enforce any advanced authorization by employing the
token derivation and token
23 matches
Mail list logo
