Implement jwtsvid.SVID type and validation #67

azdagron · 2020-03-09T18:59:57Z

This issue is to implement the jwtsvid.SVID type as outlined in svid.go along with code to parse and validate a JWT-SVID according to the specification.

The SVID type should contain the raw JWT-SVID token as well as denormalized convenience fields for various claims, like the SPIFFE ID (i.e. sub), audience (i.e. aud) and a bucket for the other claims.

There should be two methods:

ParseInsecure - simply parses a token into the SVID type but does not validate. This is mainly useful when the token is received from a trust source (like the workload API)
ParseAndValidate - parses and validates the JWT-SVID token according to the spec and returns the SVID type.

This issue depends on #57 for validation.

The text was updated successfully, but these errors were encountered:

azdagron · 2020-05-28T14:40:30Z

Fixed in #84

azdagron mentioned this issue Mar 9, 2020

Implement Workload API client #68

Closed

azdagron added this to To do in V2 API via automation Mar 9, 2020

MarcosDY self-assigned this Mar 19, 2020

MarcosDY moved this from To do to In progress in V2 API Mar 19, 2020

MarcosDY mentioned this issue Mar 25, 2020

Implement jwtsvid validation #84

Merged

MarcosDY moved this from In progress to Review in progress in V2 API Mar 26, 2020

MarcosDY moved this from Review in progress to Reviewer approved in V2 API Mar 27, 2020

MarcosDY moved this from Reviewer approved to Done in V2 API Apr 6, 2020

azdagron closed this as completed May 28, 2020

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Implement jwtsvid.SVID type and validation #67

Implement jwtsvid.SVID type and validation #67

azdagron commented Mar 9, 2020

azdagron commented May 28, 2020

Implement jwtsvid.SVID type and validation #67

Implement jwtsvid.SVID type and validation #67

Comments

azdagron commented Mar 9, 2020

azdagron commented May 28, 2020