Skip to content

feat(jans-cedarling): relax JwtService validation to allow optional claims #10060

New issue
New issue
Closed
#10173
Closed
feat(jans-cedarling): relax JwtService validation to allow optional claims#10060
#10173
Assignees
rmarinn
Labels
comp-jans-cedarlingTouching folder /jans-cedarlingenhancementkind-featureIssue or PR is a new feature request
Milestone
1.1.6
@rmarinn

Description

@rmarinn
rmarinn
opened on Nov 6, 2024

feat(jans-cedarling): relax JwtService validation to allow optional

Is your feature request related to a problem? Please describe.

The current validation logic in JwtService is overly strict, enforcing the presence of claims that may not be included in all token scenarios. This strictness can lead to valid tokens being rejected, especially when they are intended for Cedarling's use cases where not all claims are necessary. As a result, we need more flexibility to accommodate tokens that might omit certain non-essential claims while still being valid.

Describe the solution you'd like

For all tokens:

  • iss should be OPTIONAL.
  • aud should be OPTIONAL.
  • sub should be OPTIONAL.
  • exp should be OPTIONAL but check validity if there is one
  • nbf should be OPTIONAL but check validity if there is one

Metadata

Metadata

Assignees

Labels

comp-jans-cedarlingTouching folder /jans-cedarlingenhancementkind-featureIssue or PR is a new feature request

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions