Bug 1511490 (bmo-oauth-jwt)

BMO's oauth tokens should be use jwt

ASSIGNED
Assigned to

Status

()

enhancement
ASSIGNED
7 months ago
4 months ago

People

(Reporter: dylan, Assigned: dkl)

Tracking

Development
Dependency tree / graph

Firefox Tracking Flags

(Not tracked)

Details

Attachments

(2 attachments)

Note this option should be used: https://metacpan.org/pod/distribution/Net-OAuth2-AuthorizationServer/lib/Net/OAuth2/AuthorizationServer/Manual.pod#jwt_secret

I neglected to notice that in the review. This might require adjusting the schema as jwts can be longer than 255 chars.
Reporter

Updated

7 months ago
Alias: bmo-oauth-jwt
Reporter

Comment 1

7 months ago
With that option set, we get auth_codes like eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJhdWQiOiJodHRwOlwvXC9sb2NhbGhvc3Q6MjAyMCIsImNsaWVudCI6InhIWVNDNEt2WHlSWEx6WXJJbW13IiwiZXhwIjoxNTQzNjE2NzEyLCJpYXQiOjE1NDM2MTYxMTIsImp0aSI6IkpuT0dLUVVYWklSYmlKcjhhczdybWx2azdUSjBlQ2xLIiwic2NvcGVzIjpbInVzZXI6cmVhZCJdLCJ0eXBlIjoiYXV0aCIsInVzZXJfaWQiOm51bGx9.-zXxphtiO1L0iOrTqmvB8F8qrvyTzN9Ej2fTtAwO3mI
Reporter

Comment 2

6 months ago
Assignee: nobody → dylan
Assignee

Updated

6 months ago
Depends on: 1513708
Reporter

Updated

6 months ago
Assignee: dylan → dkl
Assignee

Comment 3

6 months ago
Posted file GitHub Pull Request
Assignee

Updated

5 months ago
Status: NEW → ASSIGNED
You need to log in before you can comment on or make changes to this bug.