Uploaded image for project: 'OpenAM Agents'
  1. OpenAM Agents
  2. AMAGENTS-2699

Use whitelist to determine if jwt audience is allowed for agent

    XMLWordPrintable

Details

    Description

      Currently multiple agent profiles in the same cookie domain has a limitation as a jwt contains a single audience.

      When the second agent receives the first agent's jwt this results in a 403. 

      Remove this requirement by adding a list of trusted audiences (agent1,agent2,... ) which the jwt can be trusted for.

       

      This is causing issues for upgrade from 4 to 5 (4 doesn't have the same requirement)

      Attachments

        Issue Links

          Activity

            People

              mareks.malnacs Mareks Malnacs
              alex.levin@forgerock.com Alex Levin
              Votes:
              0 Vote for this issue
              Watchers:
              10 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: