OpenMetadata is a unified metadata platform for data discovery, data observability, and data governance powered by a central metadata repository, in-depth column level lineage, and seamless team collaboration.
Is your feature request related to a problem? Please describe.
Request to support OIDC client apps who only supports RS512JWS Algorithm while creating token.
Currently, as par this doc https://docs.open-metadata.org/latest/deployment/security/oidc#preferred-jws-algorithm-preferredjwsalgorithm , OM only supports the RS256JWS Algorithm.
The third party OIDC login works fine when OIDC apps supports and creates tokens with RS256JWS Algorithm, but OM fails to validate tokens of OIDC apps who only supports the RS512algorithm.
Describe the solution you'd like
So, requesting you to please support RS512encrypted tokens/OIDC apps as well in OM.
Describe alternatives you've considered
Alternative is to only use OIDC apps having RS256algorithm, but in my case, due to security standards, my organization only supports the OIDC apps with RS512algorithm for best security.
Additional context
Having this feature will give OM consumers an extra added flexibility with respect to Security standards. So, please consider this.
Thanks.
Is your feature request related to a problem? Please describe. Request to support OIDC client apps who only supports
RS512JWS Algorithm while creating token. Currently, as par this doc https://docs.open-metadata.org/latest/deployment/security/oidc#preferred-jws-algorithm-preferredjwsalgorithm , OM only supports theRS256JWS Algorithm. The third party OIDC login works fine when OIDC apps supports and creates tokens withRS256JWS Algorithm, but OM fails to validate tokens of OIDC apps who only supports theRS512algorithm.Describe the solution you'd like So, requesting you to please support
RS512encrypted tokens/OIDC apps as well in OM.Describe alternatives you've considered Alternative is to only use OIDC apps having
RS256algorithm, but in my case, due to security standards, my organization only supports the OIDC apps withRS512algorithm for best security.Additional context Having this feature will give OM consumers an extra added flexibility with respect to Security standards. So, please consider this. Thanks.