docs(jans-cedarling): documentation refactor for cedarling #11192
+319
−311
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com>
Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com>
nynymike
previously approved these changes
Apr 7, 2025
6 tasks
rmarinn
reviewed
Apr 9, 2025
Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com>
rmarinn
previously approved these changes
Apr 11, 2025
Signed-off-by: ossdhaval <343411+ossdhaval@users.noreply.github.com>
ossdhaval
reviewed
Apr 15, 2025
| @@ -35,4 +35,34 @@ If the Cedarling property `CEDARLING_ID_TOKEN_TRUST_MODE` is `Strict`, the Cedar | |||
|
|
|||
| ### JWT Status Validation | |||
|
|
|||
| The Cedarling can also check for JWT revocation if you have the `CEDARLING_JWT_STATUS_VALIDATION` property `Enabled`. The Cedarling checks the status bit of the Status Token JWT, as described in the [OAuth Status Lists](https://datatracker.ietf.org/doc/draft-ietf-oauth-status-list/) draft. Token status enforcement mitigates account takeover by enabling immediate revocation of all tokens issued to an attacker. | |||
There was a problem hiding this comment.
At the start of the document(before the image), few lines explaining the why of this feature would be useful. Why do we have this feature? How does it help to enable token validation?
Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com>
ossdhaval
approved these changes
May 15, 2025
🎉 Snyk checks have passed. No issues have been found so far.✅ security/snyk check is complete. No issues have been found. (View Details) |
nynymike
approved these changes
May 16, 2025
Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com>
rmarinn
pushed a commit
that referenced
this pull request
May 20, 2025
* docs(jans-cedarling): docs refactor for cedarling Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com> * docs(jans-cedarling): fix indenting Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com> * docs(jans-cedarling): rename boolean file Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com> * fix(docs): add tags Signed-off-by: ossdhaval <343411+ossdhaval@users.noreply.github.com> * docs(jans-cedarling): address feedback Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com> --------- Signed-off-by: SafinWasi <6601566+SafinWasi@users.noreply.github.com> Signed-off-by: ossdhaval <343411+ossdhaval@users.noreply.github.com> Co-authored-by: ossdhaval <343411+ossdhaval@users.noreply.github.com>
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Prepare
Description
Target issue
closes #11191
Implementation Details
Test and Document the changes
N/A
Please check the below before submitting your PR. The PR will not be merged if there are no commits that start with
docs:to indicate documentation changes or if the below checklist is not selected.