New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[JWT] Support authentication based on JWT #4277

Open

4 tasks

jsoriano opened this issue Feb 19, 2024 · 1 comment

Labels

Team:Elastic-Agent-Control-Plane

Member

jsoriano commented Feb 19, 2024 •

edited

Loading

Describe the enhancement:

We are going to implement support for authentication based on JWT in Fleet Server. Elastic Agent should prefer the use of JWT when available.

Describe a specific use case for the enhancement or feature:

In scenarios with many agents, having stateless authentication helps to scale.

What is the definition of done?

elastic-agent can indicate that it supports JWT on enrollment and obtain tokens instead of API keys.
elastic-agent can refresh JWT tokens using access or refresh tokens.
elastic-agent can request JWT tokens using an API key. Once JWT token are available, it should forget API keys.
elastic-agent can use JWT access tokens for all its operations with Fleet Server.

Related issues

jsoriano mentioned this issue

[JWT] Notify components about changes in Fleet Server credentials #4278

Open

pierrehilbert added the Team:Elastic-Agent-Control-Plane label

Contributor

elasticmachine commented Jun 3, 2024

Pinging @elastic/elastic-agent-control-plane (Team:Elastic-Agent-Control-Plane)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment