[soteria-dev] Bearer-only access

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index] [List Home]

[soteria-dev] Bearer-only access

From: Manuel Zaldivar Alcedo <manuel.zaldivar@xxxxxxxxxxxxxxxxxx>
Date: Mon, 16 Oct 2023 09:03:15 +0000
Accept-language: es-ES, en-US
Arc-authentication-results: i=1; mx.microsoft.com 1; spf=pass smtp.mailfrom=grupoenergetico.es; dmarc=pass action=none header.from=grupoenergetico.es; dkim=pass header.d=grupoenergetico.es; arc=none
Arc-message-signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=microsoft.com; s=arcselector9901; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-AntiSpam-MessageData-ChunkCount:X-MS-Exchange-AntiSpam-MessageData-0:X-MS-Exchange-AntiSpam-MessageData-1; bh=VWJ+WMUYFcLZ9BsdUKSsasTWs+UrJZVRr8BygYa5Z34=; b=ofnur8BC+dUMwN83GN/uCeaMKAdl+Ef8fodpYvBCUVDXPSQpoDe5c3OCjWAttXxf4lHY5X+F403Gpi/z0LSUt9S3WE+5mLztj1GE+fNJkCeLUVXgmnm5hSywsC+D4fOCBLYMUMih9OhHE1b8ntGXQ4awNF94u6VzyTWLaxUnXUR4PmeNHMRwFws3SLHF3Lt/VAoOBhjyji14GDqJTJ5SIKGQfA9OtU00y86AxNK4lehxjA+sNmh7VOR4jdKH/tmw742UdmHzEZkJfq7Tcn8I4uNZGcekyk4vF+9aArl90LeFTMioWeM2ulb+ugG5SAlKEL1jId4V4xqrGe3vo8Nt8g==
Arc-seal: i=1; a=rsa-sha256; s=arcselector9901; d=microsoft.com; cv=none; b=DAG342MgVxLD83w3y6Bjqoazvr5yYD1LDDcCqx8mxI/yM7e/dwTtYaxk+uSRze0MuWg5r4oeCrwDP/vDo0++ZRxRHJDXzHArfV4wwtG3jiqy/Tes1L9nUi85QYKlwy4Jxj/8e8ROsK85VW68YbK1jkeB0uKYnrmhnJeEYUdL9mq7MwDeqm9BLZVAq8rvG/7y49XYqB059qQH+zz3ymkZxMHw2JRXremuHbiM1sMp/VO75oYJl7tmqM1PsLI4znA7Zwpk9AXlY0mKMzy1mSt5Dc3B2Md2pIKETZx3bPnEti0F22TT1EiPVa05MVd7zJMWW/1dYnBOT7FliE81++B9nA==
Delivered-to: soteria-dev@xxxxxxxxxxx
List-archive: <https://www.eclipse.org/mailman/private/soteria-dev/>
List-help: <mailto:soteria-dev-request@eclipse.org?subject=help>
List-subscribe: <https://www.eclipse.org/mailman/listinfo/soteria-dev>, <mailto:soteria-dev-request@eclipse.org?subject=subscribe>
List-unsubscribe: <https://www.eclipse.org/mailman/options/soteria-dev>, <mailto:soteria-dev-request@eclipse.org?subject=unsubscribe>
Thread-index: AdoADl5xqD7PnDR1QsW4jTM9SCwldQ==
Thread-topic: Bearer-only access

Hello everyone,

Current version of soteria implements the OpenID Authorization code flow, which requires a redirection to the OpenID Provider and
the interaction of a user to complete the authentication process.

In a Jakarta Web application, which only exposes services through a REST API (using Jakarta RESTful Web Services) we only want to care
about validating the access token for each request to allow or deny access to the resource, but not to redirect to the OpenID Provider to
initiate an authentication process. This is not supported currently…

Do you have any plan to add this feature?

Any workaround meanwhile?

Thanks

Prev by Date: [soteria-dev] PR review for issue #337 and #343
Next by Date: [soteria-dev] Revocation of access tokens
Previous by thread: [soteria-dev] PR review for issue #337 and #343
Next by thread: [soteria-dev] Revocation of access tokens
Index(es):
- Date
- Thread

Breadcrumbs