Skip to content

Support for JWT claims from RFC 9068 #16906

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
OrangeDog opened this issue Apr 8, 2025 · 0 comments
Open

Support for JWT claims from RFC 9068 #16906

OrangeDog opened this issue Apr 8, 2025 · 0 comments
Labels
status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement

Comments

@OrangeDog
Copy link
Contributor

Expected Behavior

RFC 9068 defines the claims "roles", "groups", and "entitlements", which can be useful for transmitting standardised information. These are structured values from SCIM defined by RFC 7643.

Some support in parsing them would be nice. Ideally a getRoles() method somewhere returning e.g. List<SCIMRole> etc.

Current Behavior

The claims set is typed as just a Map<String, Object, requiring a lot of casting (often unchecked) and verification to get at these structures.

Context

Mapping these concepts to ROLE_ authorities and ACL domain principals rather than having to do full user lookups (which may not be possible in some architectures) at the resource server.
@OrangeDog OrangeDog added status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement labels Apr 8, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
status: waiting-for-triage An issue we've not yet triaged type: enhancement A general enhancement
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@OrangeDog