Closed jmartin-sul closed 5 years ago
per this trellis documentation, we'll want to do this by passing the entire JWT to trellis in the auth header:
A JWT token appears in a header as: Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ3ZWJpZCI6Imh0dHA6Ly9leGFtcGxlLmNvbS91c2VyIn0.YyVrlxXVQXFtg6euOl7I1GTMwdm7SiHcIZb6L0brBqI https://github.com/trellis-ldp/trellis/wiki/Authentication#jwt-authentication
A JWT token appears in a header as:
Authorization: Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJ3ZWJpZCI6Imh0dHA6Ly9leGFtcGxlLmNvbS91c2VyIn0.YyVrlxXVQXFtg6euOl7I1GTMwdm7SiHcIZb6L0brBqI
trellis is then configured to decode and validate the JWT, and to use the webID provided therein if the JWT is valid.
see also: https://github.com/trellis-ldp/trellis/tree/master/auth/oauth https://github.com/trellis-ldp/trellis/wiki/App-Configuration-Guide https://github.com/LD4P/sinopia_server/issues/70
closed by #72
jmartin-sul
commented
5 years ago jmartin-sul
commented
5 years ago
per this trellis documentation, we'll want to do this by passing the entire JWT to trellis in the auth header:
trellis is then configured to decode and validate the JWT, and to use the webID provided therein if the JWT is valid.
see also: https://github.com/trellis-ldp/trellis/tree/master/auth/oauth https://github.com/trellis-ldp/trellis/wiki/App-Configuration-Guide https://github.com/LD4P/sinopia_server/issues/70