Adding new authorization mode "Sidecar-Proxy authorization endpoint service (iSHARE-compliant)": Allows to manage access to a sidecar-proxy authorization endpoint configuration service (https://github.com/FIWARE/endpoint-auth-service). Access is managed via an iSHARE-compliant authorisation registry where a policy with type "EndpointConfig" needs to be issued to the requesting party.
Support for iSHARE JWT verification via iSHARE satellite trusted_list: Instead of supplying the root CA, verification can also be performed based on the certificate chain supplied in the x5c header of the authorization JWT. In this case, the fingerprint of the supplied root CA is matched to the trusted_list of the iSHARE satellite. Instead of the root CA file, information about the iSHARE satellite must be supplied in the API Umbrella configuration yaml file.
Adding two new functionalities:
Adding new authorization mode "Sidecar-Proxy authorization endpoint service (iSHARE-compliant)": Allows to manage access to a sidecar-proxy authorization endpoint configuration service (https://github.com/FIWARE/endpoint-auth-service). Access is managed via an iSHARE-compliant authorisation registry where a policy with type "EndpointConfig" needs to be issued to the requesting party.
Support for iSHARE JWT verification via iSHARE satellite trusted_list: Instead of supplying the root CA, verification can also be performed based on the certificate chain supplied in the x5c header of the authorization JWT. In this case, the fingerprint of the supplied root CA is matched to the trusted_list of the iSHARE satellite. Instead of the root CA file, information about the iSHARE satellite must be supplied in the API Umbrella configuration yaml file.