rain-api-core

Cookies

When logging in, rain-api-core sets a few cookies:

JWT cookie

The JWT cookie's name is set with the JWT_COOKIENAME env variable. If that variable goes unset, the default value is 'asf-urs'.

Algorithim

JWT cookie uses RS256 by default. Optionally HS256

Keys

Keys for the JWT cookie are stored in AWS secret manager, fetched by name stored in the JWT_KEY_SECRET_NAME env var.

{
  "rsa_priv_key": "verylongstring=",
  "rsa_pub_key": "longstring="
}

Payload

Its payload looks something like this:

{
  "urs-user-id": "<User's URS ID>",
  "urs-access-token": "<A URS access token string>",
  "urs-groups": [
    {
      "app_uid": "<UID of URS app #1>",
      "client_id": "<Client ID string #1>",
      "name": "<Name of group #1>"
    },
    {
      "app_uid": "<UID of URS app #2>",
      "client_id": "<Client ID string #2>",
      "name": "<Name of group #2>"
    }
  ],
  "iat": 1565294120,
  "exp": 1565299000
}

Name		Name	Last commit message	Last commit date
Latest commit History 406 Commits
.github/workflows		.github/workflows
extra		extra
rain_api_core		rain_api_core
tests		tests
.gitignore		.gitignore
.pyup.yml		.pyup.yml
LICENSE.txt		LICENSE.txt
README.md		README.md
codecov.yml		codecov.yml
requirements-dev.txt		requirements-dev.txt
requirements.txt		requirements.txt
setup.cfg		setup.cfg
setup.py		setup.py

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Repository files navigation

rain-api-core

Cookies

JWT cookie

Algorithim

Keys

Payload

About

Releases

Packages

Contributors 12

Languages

License

asfadmin/rain-api-core

Folders and files

Latest commit

History

Repository files navigation

rain-api-core

Cookies

JWT cookie

Algorithim

Keys

Payload

About

Resources

License

Stars

Watchers

Forks

Releases

Packages 0

Contributors 12

Languages

Packages