Uploaded image for project: 'Camunda Optimize'
  1. Camunda Optimize
  2. OPT-6100

Add scope to the JWT Validation in Platform and CCSM mode

XMLWordPrintable

    • Icon: Feature Request Feature Request
    • Resolution: Fixed
    • Icon: L3 - Default L3 - Default
    • 3.8.0
    • None
    • backend
    • None

      Problem Definition

      User Story

      As a user
      I want authenticate API calls with a JWT Token
      So that the scope of the token is also used to validate it

      Use Cases

      PM Notes (Customer requests, context, assumptions)

      Solution Definition

      Solution Ideas

      Implement the audience validation for CCSM and Platform mode analogous to SaaS mode. This involves migrating the settings to the correct place in service-config.yaml as well

      Instructions for testing:

      1. Generate a Jwt Token with an optimize Audience
      2. Start Optimize in Platform/CCSM Mode and provide that audience name with the environment variable CAMUNDA_OPTIMIZE_AUDIENCE or with the configuration$.api.audience
      3. Perform a public API request with that token and check that authentication was successful
      4. Start Optimize in Platform/CCSM mode and provide a fake audience name with the environment variable CAMUNDA_OPTIMIZE_AUDIENCE or with the configuration$.api.audience
      5. Perform a public API request with that token and check that authentication failed

        This is the controller panel for Smart Panels app

              Unassigned Unassigned
              giuliano.rodrigues-lima Giuliano Rodrigues Lima
              Giuliano Rodrigues Lima Giuliano Rodrigues Lima
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

                Created:
                Updated:
                Resolved: