Uploaded image for project: 'Identity Gateway'
  1. Identity Gateway
  2. OPENIG-3500

Keep endpoint configuration item in OpenAmAccessTokenResolver until access token revocation notification from AM is supported

    Details

    • Type: Improvement
    • Status: Closed
    • Priority: Major
    • Resolution: Won't Do
    • Affects Version/s: 6.0.0, 6.1.0, 6.5.0, 7.0.0
    • Fix Version/s: 7.0.0, 7.0.0-micsvc-1.0.3
    • Component/s: OAuth 2.0
    • Labels:
    • Environment:
      IG just making use of OpenAmAccessTokenResolver without any AM sso or policy components.
    • Support Ticket IDs:
    • Story Points:
      0

      Description

      For the use-case where IG is just using the OpenAmAccessTokenResolver without any other AM sso or policy components, having to create an agent entry in AM and maintain credentials is a configuration step that shouldn't be required.

      Workaround is to make use of the deprecated endpoint configuration item to provide the AM token validation endpoint rather than obtaining it from the AM service.

      Since the endpoint item is deprecated it may go away in a future version, consider leaving it in place until OPENAM-12285 is implemented.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                Unassigned
                Reporter:
                markdr Mark de Reeper
              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: