-
## 설명(Description)
- Spring Security + JWT에서 발생 할 수 있는 케이스에 대해서 고민하고 코드 보강
- Exception 처리에 더욱 신경 쓰고 해당 코드를 추가한 이유를 글로 작성
- 현재 이슈에 코멘트로 남기거나 노션 페이지에 정리
## To Do List
- [ ] Expire된 토큰 Except…
-
Hey hey RESTler Team,
is it possible to let RESTler know which authentication it will use for a given request.
In our case, the same API uses both Bearer Authentication as well as Basic Authenti…
-
**Describe the bug**
application ran failed with the message:
```
org.springframework.web.client.ResourceAccessException: I/O error on GET request for "http://data-auth-server:9000/oauth/token_key"…
-
Should change middleware jwt's SuccessHandler:
```
type JWTSuccessHandler func(c echo.Context)
-> type JWTSuccessHandler func(c echo.Context) error
```
It should be a minor change that will not a…
-
**Problem description**
Referring to [ICM Issue 128](https://github.com/camaraproject/IdentityAndConsentManagement/issues/128) and [2024-06-19 ICM Minutes](https://wiki.camaraproject.org/pages/view…
-
## 비즈니스 요구사항
- username, password를 클라이언트에서 전달 받습니다.
- Spring Security와 JWT를 사용하여 설계 및 구현합니다.
- JWT는 Access Token, Refresh Token을 구현합니다.
- Access Token 만료 시 : 유효한 Refresh Token을 통해 새로운 Access Token…
-
### Describe the bug
When trying to use AbortSignal in custom JWT claims a reference expect is thrown (when using the test functionality) stating AbortSignal is not defined.
### Expected behav…
-
I notice that the user-management initially authenticates the user using login and password, but on subsequent request from the front-end the token is not verified. This will leave your microservices …
ghost updated
4 years ago
-
**Expected Behavior**
Currently, if the JWT is having typ as "at+jwt", the token is rejected with message "Failed to authenticate since the JWT was invalid". I am aware that this has already been a…
-
hi i'm unable to make working the security of a JWT, i follow the syntax that i found for oas-tools but it's not working:
```
var options = {
controllers: path.join(__dirname, './controllers'),
o…