Skip to content

Implement JWK Set Endpoint #82

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
jgrandja opened this issue May 28, 2020 · 4 comments
Closed

Implement JWK Set Endpoint #82

jgrandja opened this issue May 28, 2020 · 4 comments
Assignees
@jgrandja
Labels
type: enhancement A general enhancement
Milestone
0.0.1

Comments

@jgrandja
Copy link
Collaborator

jgrandja commented May 28, 2020
edited
Loading

The authorization server should provide an endpoint that responds with the public key(s) used to verify the signature of a JWS. The public key(s) should be returned in the JWK Set format.

The JwkSetEndpointFilter should be implemented as a Filter similar to #31.

Implementation Requirements

  • the Filter should process GET requests for the (default) path /oauth2/jwks
  • only public key(s) should be returned - private keys and symmetric keys must NOT be returned
  • the Filter should have a "KeyManager" that provides the public key(s) (also required by Add JwtEncoder to support JWT/JWS #81 )
  • javadoc class and public methods
  • Unit tests

Specification References

JSON Web Key (JWK)
@jgrandja jgrandja added type: enhancement A general enhancement status: on-hold We can't start working on this issue yet labels May 28, 2020
@jgrandja jgrandja added this to the 0.0.1 milestone May 28, 2020
This was referenced May 28, 2020
Closed
Closed
@rorybyrne
Copy link

How exactly does this relate to #2? Should this replace the existing implementation in #31 or should it be a separate filter matching /oauth/jwks instead of .well-known/jwk_uris?

Perhaps @ovidiupopa91 is interested in this as he requested #2 originally :)

@ghost
Copy link

ghost commented May 29, 2020

Hi, yes, I'm interested in working on this issue.

@jgrandja
Copy link
Collaborator Author

@synek The goal of #2 was to flush out the implementation so it can be used in #4. It really was meant to be a simplified implementation compared to what is required here. Ultimately, #2 will be replaced by this implementation.

@ovidiupopa91 I have an internal team that will be delivering the implementations for the JOSE stack. I plan on logging a couple of new issues next week so take a look there to see if anything interests you.

@ghost
Copy link

ghost commented May 29, 2020

@jgrandja ok, got it! I will take a look next week.

@anoopgarlapati anoopgarlapati mentioned this issue Jun 11, 2020
Closed
9 tasks
@jgrandja jgrandja self-assigned this Aug 17, 2020
@jgrandja jgrandja removed the status: on-hold We can't start working on this issue yet label Aug 17, 2020
doba16 pushed a commit to doba16/spring-authorization-server that referenced this issue Apr 21, 2023
@jgrandja
Add JWK Set Endpoint Filter
5536dd9 
Closes spring-projectsgh-82
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jgrandja jgrandja

Labels
type: enhancement A general enhancement
Projects
None yet
Milestone
0.0.1
Development

No branches or pull requests
2 participants
@rorybyrne @jgrandja