...
| Page Properties |
|---|
|
| Product Version | 2020 Winter |
|---|
| Report Note |
|
|---|
| Assignee | Antje |
|---|
Resources & Remarks Modification History | Name | Date | Product Version | Action |
|---|
| Antje Oelschlägel | 27 MAY 2021 | 2021 Summer | Page created and filled with content provided by Jerome. | | AgnieszkAgnieszka | 02 JUNE 2021 | 2021 Summer | rLANG | | Antje | 17 DEC 2021 | 2022 Spring | expiration date is validated as well |
|
| Excerpt |
|---|
Configure the validation of the internal JSON Web Token that is used to authorize an API call reaching the individual services in the yuuvis® Momentum cluster. |
| Note |
|---|
title | Preview |
The validation of internal JSON Web Tokens will be supported as of version 2021 Autumn. |
| Section |
|---|
|
| Column |
|---|
Table of Contents| Table of Contents |
|---|
| exclude | (Table of Contents|Read on|Authentication against the Core API|Access Authorization and Permissions|Test System Installation Guide) |
|---|
|
|
|
Introduction
In order to prevent unauthorized access from outside by faking the JWT, as of version 2021 Autumn, its signature can be used for an additional validation of the caller's authorization. As of version 2022 Spring, the expiration date is validated as well. Thus, it is not possible to authenticate with a token anymore if its expiration date is exceeded. The validation is provided by the internal endpoint /authentication/jwt/verify of the AUTHENTICATION Service. In order to activate the validation, the endpoint has to be exposed manually.
...
If the signature of the JWT matches its header and payload, and the expiration date is not exceeded, the validation will be successful and the response body contains true. If the validation fails, the response body contains false.
...
| Info |
|---|
|
Read on
| Section |
|---|
| Column |
|---|
| | Insert excerpt |
|---|
| Access Authorization and Permissions |
|---|
| Access Authorization and Permissions |
|---|
| nopanel | true |
|---|
|
Keep reading |
| Column |
|---|
| | Insert excerpt |
|---|
| Authentication against the Core API |
|---|
| Authentication against the Core API |
|---|
| nopanel | true |
|---|
|
Keep reading
|
|
|
...