sb3vecore opened a new pull request, #23389:
URL: https://github.com/apache/camel/pull/23389
The embedded HTTP server in camel-platform-http-main previously
configured Vert.x JWTAuth with keystore parameters only. Tokens were
verified for signature and the default exp/nbf claims, but the
RFC 7519 registered claims iss (issuer) and aud (audience) were not
validated.
Add optional jwtIssuer and jwtAudience properties to both
HttpServerConfigurationProperties (camel.server.*) and
HttpManagementServerConfigurationProperties (camel.management.*).
When either is set, attach a JWTOptions configured with the
corresponding values to the JWTAuthOptions passed to JWTAuth.create.
Behaviour is unchanged when both are unset.
jwtAudience accepts a comma-separated list; a token is accepted if
its aud claim matches any configured value.
# Description
<!--
- Write a pull request description that is detailed enough to understand
what the pull request does, how, and why.
-->
# Target
- [ ] I checked that the commit is targeting the correct branch (Camel 4
uses the `main` branch)
# Tracking
- [ ] If this is a large change, bug fix, or code improvement, I checked
there is a [JIRA issue](https://issues.apache.org/jira/browse/CAMEL) filed for
the change (usually before you start working on it).
<!--
# *Note*: trivial changes like, typos, minor documentation fixes and other
small items do not require a JIRA issue. In this case your pull request should
address just this issue, without pulling in other changes.
-->
# Apache Camel coding standards and style
- [ ] I checked that each commit in the pull request has a meaningful
subject line and body.
<!--
If you're unsure, you can format the pull request title like `[CAMEL-XXX]
Fixes bug in camel-file component`, where you replace `CAMEL-XXX` with the
appropriate JIRA issue.
-->
- [ ] I have run `mvn clean install -DskipTests` locally from root folder
and I have committed all auto-generated changes.
<!--
You can run the aforementioned command in your module so that the build
auto-formats your code. This will also be verified as part of the checks and
your PR may be rejected if if there are uncommited changes after running `mvn
clean install -DskipTests`.
You can learn more about the contribution guidelines at
https://github.com/apache/camel/blob/main/CONTRIBUTING.md
-->
--
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.
To unsubscribe, e-mail: [email protected]
For queries about this service, please contact Infrastructure at:
[email protected]
