Comments (6)
kpacha
commented on June 2, 2024
1
that should be the case. please upgrade it and check it again
from krakend-jose.
OndraM
commented on June 2, 2024
We face similar issue, we have role as a plain string value in the payload.
Current behavior seems to reject the role with 403, even though the value matches.
krakend.json
"extra_config": {
"github.com/devopsfaith/krakend-jose/validator": {
...
"roles_key": "ourRolesKey",
"roles": ["requiredRole"]
}
},
JWT payload:
"payload": {
...
"ourRolesKey": "requiredRole",
}
from krakend-jose.
kpacha
commented on June 2, 2024
We face similar issue, we have role as a plain string value in the payload.
Current behavior seems to reject the role with 403, even though the value matches.
That's weird because I've added a test for your case and it's working
from krakend-jose.
OndraM
commented on June 2, 2024
Weird indeed. But there is no other information in the log besides 403, is it possible to debug this somehow?
We ale also using older krakend version on this particular instance, so maybe if this was changed in last few versions, we may not be using it.
from krakend-jose.
alombarte
commented on June 2, 2024
Closing. In case it does not work with the last version please reopen.
from krakend-jose.
github-actions
commented on June 2, 2024
This issue was marked as resolved a long time ago and now has been automatically locked as there has not been any recent activity after it. You can still open a new issue and reference this link.
from krakend-jose.
Related Issues (20)
- Mixing "propagate_claims" headers with "input_headers" is still a bad design HOT 1
- Optional JWT validation HOT 1
- Error validating JWT token HOT 2
- jwk_local_path with cache
- Runtime error: index out of range
- Runtime error index out of range when passing a claim that contains an empty list HOT 1
- Custom response for "401 Unauthorized" when JWT token is expired HOT 1
- "propagate_claims" with empty array value got 500 and empty resp body HOT 2
- "fatal error: concurrent map writes" when trying to delete a key
- JWT cache not shared across endpoints ? HOT 1
- Mux router does not forward JWT parameters HOT 1
- Allow 'any' matching strategy for audience claim
- Add the ability to use the Well-Known URI to determine the JWK URI HOT 1
- Error with devopsfaith/krakend-jose/validator jwk-url HOT 4
- Return WWW-Authenticate header upon 401 HOT 1
- [JWTValidator] Validator disabled for this endpoint HOT 2
- The deprecation of github.com/auth0-community/go-auth0 breaks build HOT 4
- Add anti token sidejacking measures HOT 1
- jwt not validating - Userfront HOT 3
- should have a JSON content type for JWKS endpoint HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from krakend-jose.