Uploaded image for project: 'Commons'
  1. Commons
  2. COMMONS-292

JwtSessionModule should be flexible in crypto implementation

    XMLWordPrintable

    Details

    • Story
    • Status: Resolved
    • Resolution: Fixed
    • 24.0.0
    • Secrets
    • None
    • Haldane - 2018.3

      Description

      The JwtSessionModule and ServletJwtSessionModule are currently hard-coded to use a keystore and fixed hmac key for encryption and signing. Instead this should be made flexible enough that the crypto implementation can be switched out by the consuming product.

        Attachments

          Issue Links

            Activity

              People

              jamesphillpotts James Phillpotts
              jamesphillpotts James Phillpotts
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

                Dates

                Created:
                Updated:
                Resolved: