-
Notifications
You must be signed in to change notification settings - Fork 76
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat(jans-auth-server): updated first party native authn implementation ( in backwards compatibility way) #10380 #10442
base: main
Are you sure you want to change the base?
Conversation
…n ( in backwards compatibility way) #10380 #10380 Signed-off-by: YuriyZ <[email protected]>
…ty Apps #10380 Signed-off-by: YuriyZ <[email protected]>
DryRun Security SummaryThe pull request enhances the security of the Janssen Authentication Server by implementing DPoP support, improving authorization challenge handling, strengthening token validation, and adding comprehensive audit logging to mitigate potential security risks. Expand for full summarySummary: The code changes in this pull request focus on enhancing the security of the Janssen Authentication Server (JAS) application, particularly in the areas of authorization challenge handling, DPoP (Demonstration of Proof-of-Possession) implementation, and overall token management. The key security improvements include:
Overall, the changes in this pull request demonstrate a strong focus on improving the security posture of the Janssen Authentication Server application by implementing industry-standard security practices and mechanisms, such as DPoP and authorization challenge handling. These enhancements help to mitigate various security risks and strengthen the overall security of the application. Files Changed:
Code AnalysisWe ran
|
…pps case #10380 Signed-off-by: YuriyZ <[email protected]>
…arty Apps is invoked Signed-off-by: YuriyZ <[email protected]>
Signed-off-by: YuriyZ <[email protected]>
Signed-off-by: YuriyZ <[email protected]>
…10380 Signed-off-by: YuriyZ <[email protected]>
Signed-off-by: YuriyZ <[email protected]>
Signed-off-by: YuriyZ <[email protected]>
Description
Update first party native authn implementation.
It must be updated in backwards compatibilty way because it is already in use.
https://datatracker.ietf.org/doc/draft-parecki-oauth-first-party-apps/02/
Target issue
closes #10380
Test and Document the changes
Please check the below before submitting your PR. The PR will not be merged if there are no commits that start with
docs:
to indicate documentation changes or if the below checklist is not selected.