-
Notifications
You must be signed in to change notification settings - Fork 24
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: "kid" support in JWT header and multiple keys. #392
feat: "kid" support in JWT header and multiple keys. #392
Conversation
@merlin-northern, Let me know if you want to start the integration pipeline by mentioning me and the command "start pipeline". my commands and optionsYou can trigger a pipeline on multiple prs with:
You can start a fast pipeline, disabling full integration tests with:
You can trigger GitHub->GitLab branch sync with:
You can cherry pick to a given branch or branches with:
|
fff601c
to
fcfc84f
Compare
fcfc84f
to
b9967db
Compare
@mender-test-bot start pipeline please honey |
Hello 😸 I created a pipeline for you here: Pipeline-1076295007 Build Configuration Matrix
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The title of the PR and the ticket description does not align.
Although I like the idea of adding support for JWK support in the backend, the ticket was actually about adding support for allowing tokens with no key signature. Probably the easiest way of achieving this is to set the alg
header field to none
if none of the private key configs are set.
b9967db
to
d4ca632
Compare
thanks. if you like it, I consider it a good sign :) and I have been down that road, the library we use will not allow to verify the token with alg none. |
ad687a3
to
949c990
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
looks good to me, but since it's not exactly what was requested in the ticket, I'd like to know @alfrunes (the author of the ticket) opinion before merging
no worries, there is already an item added for tomorrow. |
@mender-test-bot start pipeline please honey |
Hello 😸 I created a pipeline for you here: Pipeline-1088486974 Build Configuration Matrix
|
8cd56b7
to
1539d3b
Compare
Ticket: MEN-6804 Changelog: title Signed-off-by: Peter Grzybowski <[email protected]>
1539d3b
to
27467e3
Compare
Merging these commits will result in the following changelog entries: Changelogsuseradm (men_6804_key_rotation_support)New changes in useradm since master: Features
|
@mender-test-bot start pipeline --fast please |
Hello 😸 I created a pipeline for you here: Pipeline-1089697069 Build Configuration Matrix
|
Hello 😸 This PR contains changelog entries. Please, verify the need of backporting it to the following release branches: |
Ticket: MEN-6804
Changelog: title