Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Duplicate JWK kids across issuers are not handled correctly #5177

Closed
3 tasks done
achamayou opened this issue Apr 14, 2023 · 2 comments
Closed
3 tasks done

Duplicate JWK kids across issuers are not handled correctly #5177

achamayou opened this issue Apr 14, 2023 · 2 comments
Assignees
@maxtropets
Labels
bug

Comments

@achamayou
Copy link
Member

achamayou commented Apr 14, 2023
edited by maxtropets
Loading

CCF's KV schema and internal logic assumes JWK kids uses for JWT authentication are unique globally, not per issuer. This is an incorrect assumption, as per https://www.rfc-editor.org/rfc/rfc7517#page-8

Tasks
Beta Give feedback
@achamayou achamayou added the bug label Apr 14, 2023
@achamayou achamayou mentioned this issue Apr 18, 2023
Open
@achamayou achamayou added this to the 4.x milestone May 15, 2023
@achamayou achamayou removed this from the 4.x milestone Jan 25, 2024
@maxtropets maxtropets mentioned this issue May 13, 2024
Closed
@maxtropets
Copy link
Contributor

Some preparation job is going to be done in #5809

@maxtropets maxtropets self-assigned this May 28, 2024
@maxtropets maxtropets mentioned this issue May 28, 2024
Merged
@maxtropets
Copy link
Contributor

Closed in #6175

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@maxtropets maxtropets

Labels
bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@achamayou @maxtropets