Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Unresolved
Priority: Minor - P4
Fix Version/s: 8.0.0-rc0, 7.3.0-rc3, 7.0.7
Affects Version/s: None
Component/s: manual, Server
Labels:

Original Downstream Change Summary

As part of PM-3662, the server will start rejecting OIDC access tokens that contain audience claims where the value is an empty array, or an array of multiple strings. This behavior will be backported to 7.0 & 7.3.

Description of Linked Ticket

If a client presents an access token where the "aud" claim is an array containing more than one string, then the server should reject it.

documents

SERVER-86607 Reject access tokens with multiple audience claims

Closed

is duplicated by

DOCS-16657 [BACKPORT] [v7.3] Reject access tokens with multiple audience claims

Closed

Assignee:: Unassigned

Reporter:: Backlog - Core Eng Program Management Team

Participants:: Backlog - Core Eng Program Management Team, Education Bot

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: Feb 16 2024 03:10:03 PM UTC

Updated:: Apr 18 2024 03:56:16 PM UTC

Days since reply:: 10 weeks, 6 days ago

Details

Description

Description of Linked Ticket

Attachments

Issue Links

Activity

People

Dates