You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
@@ -16,7 +16,9 @@ See link:/docs/security/overview[Security Overview] for an high level view of th
JWT Authentication manages the authentication following the link:https://jwt.io[JSON Web Token standard].
The token is verified against the configured `issuer` and `audience` and according to the specified `algorithm`.
The token is verified against the configured `issuer` and `audience` and according to the specified `algorithm`. If you want to disable checking `issuer` or `audience`, set them to `null`. The property `audience` can be `null`, a String or an array of Strings.
The authenticated client will gain the roles included in the JWT claim set by `rolesClaim` or the roles specified by the configuration option `fixedRoles`. It's not possible to set both `rolesClaim` and `fixedRoles`
Supported algorithms are the HMAC256, HMAC384, HMAC512, RSA256, RSA384, RSA512.
Expand All
@@ -37,8 +39,6 @@ jwtAuthenticationMechanism:
audience: myAudience
----
It's not possible to set both `rolesClaim` and `fixedRoles`
=== Basic Authentication
**BasicAuthMechanism** manages the Basic Authentication method, where the client credentials are sent via the `Authorization` request header using the format `Authorization: Basic base64(id:pwd)`. The configuration allows specifying the Authenticator that will be used to verify the credentials.
