Uploaded image for project: 'Service Packs and Hot Fixes'
  1. Service Packs and Hot Fixes
  2. MNT-19742

Introduce support for x.509 certificate bound OAuth2 tokens

    Details

    • Bug Priority:
      Category 1
    • ACT Numbers:

      00967190

    • Premier Customer:
      Yes

      Description

      Summary of the Enhancement
      The customer would like to have the possibility to configure and use x.509 certificate bound OAuth tokens. This is without using the new Identity Management (KeyClock) but the pure Spring Oauth2 implementation.
       
      Customer's environment
      APS 1.8.1.1 
       
      Replication steps/Current behavior
      At the moment we don't provide the possibility to use x.509 certificate bound OAuth tokens. It is missing in our OAuth implementation and it is not configurable in activiti.app.properties.
       
      Desired behavior
      Customer would like to have the possibility to use X.509 certificate bound OAuth token and configure the authentication in the activiti-app.properties
       
      Business case
      This feature is important as customer is using their own certificate server and at the moment they need to overwrite the class Oauth2RequestHeaderService.java using reflection as a solution because is not possible to override the class directly using Spring.

        Attachments

          Activity

            People

            • Assignee:
              djohnson Doug Johnson
              Reporter:
              fmalagrino Francesco Malagrino
            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated: