Loading...

XML

Word

Printable

JSON

Type: Task
Resolution: Unresolved
Priority: Major - P3
Fix Version/s: None
Affects Version/s: None
Component/s: None
Labels:
None

Assigned Teams:

Server Security
Sprint:
Security 2024-07-08, Security 2024-07-22, Security 2024-08-05, Security 2024-08-19
Confidence Status:
None
Work Order:
3
CAR Domain/s:
None

Aha! Reference:
None
Tracking Level:
None
Risk Status:
None
Exec Notes:
None
Goal Name(s):
None
Goal Link:
None

The AuthSessionTokenManager provides the backbone of JWK management in this project. Build the AuthSessionTokenManager, and create the JWKDocument that will represent a JWK stored on disk in the jwks collection.

The router and shard specific implementations will be done in future tickets.

Design links: AuthSessionTokenManager and JWKDocument.

Acceptance Criteria: There is a virtual base class with the ability to generate JWKs and to sign and validate tokens. There is a mock class implementation of this function to facilitate future testing. There is a new IDL struct, JWKDocument.

depends on

SERVER-91641 Extend JWSValidator to sign JWTs

Needs Scheduling

is depended on by

SERVER-91651 Implement JWT Expiration

Open

SERVER-91645 Build the shard implementation of AuthSessionTokenManager

Needs Scheduling

SERVER-91665 Extend AuthorizationSession to authenticate Clients with access tokens

Needs Scheduling

Assignee:: Unassigned
Reporter:: Erin McNulty
Participants:: Erin McNulty
Votes:: 0 Vote for this issue
Watchers:: 2 Start watching this issue

Created:: Jun 18 2024 05:25:14 PM UTC
Updated:: Apr 02 2025 06:32:12 PM UTC
Confidence Status Last Update:: 02/Jul/24 1:48 PM

Details

Description

Attachments

Issue Links

Activity

People

Dates