Verifier Refactor for Multi-tenant Configs #182
Merged
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Overview
This PR adds a new config item for the Azure Entra ID SSO,
token_verifier
. It should benorthwestern
,common
, or a class that implements\Northwestern\SysDev\SOA\Auth\OAuth2\TokenVerifier\Contract\TokenVerifierInterface
.This is meant to be used in multi-tenant configurations; the package was always verifying the ID token was issued by the NU tenant, but for multi-tenant apps, the issuer will be their "home" tenant ID.
No changes need to be made for most use-cases; this still defaults to NU-only.