Project

General

Profile

Actions

User story #26168

closed

Add OAuth2 JWT Bearer token with client_credentials flow for Rudder API authentication

Added by François ARMAND 3 months ago. Updated 24 days ago.

Status:
Released
Priority:
N/A
Target version:
UX impact:
Suggestion strength:
User visibility:
Effort required:
Name check:
To do
Fix check:
To do
Regression:
No

Description

This feature will allow users to use OAuth2 client_credentials and Bearer token authentication in addition to Rudder API Token.

The Bearer token will need to embed the user rights through custom role mapping, as it is done for OIDC user provisionning and authentication / authorisation.

The exact parameters are still to be discussed.

This one is for JWT bearer tokens. See children for opaque bearer tokens.


Related issues 1 (0 open1 closed)

Related to Rudder - Architecture #26167: Make API authentication pluggableReleasedClark ANDRIANASOLOActions
Actions #1

Updated by François ARMAND 3 months ago

Actions #2

Updated by François ARMAND 3 months ago

  • Status changed from New to In progress
Actions #4

Updated by François ARMAND 3 months ago

  • Status changed from In progress to Pending technical review
  • Pull Request set to https://github.com/Normation/rudder-plugins/pull/783
Actions #5

Updated by Anonymous 2 months ago

  • Status changed from Pending technical review to Pending release
Actions #6

Updated by François ARMAND about 2 months ago

  • Subject changed from Add OAuth2 Bearer token with client_credentials flow for Rudder API authentication to Add OAuth2 JWT Bearer token with client_credentials flow for Rudder API authentication
  • Description updated (diff)
Actions #7

Updated by Vincent MEMBRÉ 24 days ago

  • Status changed from Pending release to Released

This bug has been fixed in Rudder plugin auth-backends v8.3.0.beta1-2.7

Actions

Also available in: Atom PDF