Uploaded image for project: 'FOLIO'
  1. FOLIO
  2. FOLIO-2523

SPIKE: improve design of authn/z

    XMLWordPrintable

Details

    • CP: sprint 86, CP: sprint 87, CP: Roadmap backlog, CP: sprint 85
    • 5
    • Core: Platform

    Description

      TBD:
      – summarise current design and refer to existing docs
      – propose API changes
      – propose additional utilities (like caching)

      Goal

      This goal is to improve the following aspects of the existing authn/z:

      • improve performance and cacheability – structure the API to limit the number of token signing requests
      • standardize and simplify mod-authtoken API – use regular RAML/JSON API defintion
      • lift header-size limites – move away from the header-oriented API, limit the number of custom headers

      https://docs.google.com/document/d/14DVZC3MJRQfgNchMXzxtz4-2s0W9pmnXCLq5KbjeKaw/edit?usp=sharing

      TestRail: Results

        Attachments

          Issue Links

            is blocked by

            Task - A task that needs to be done. OKAPI-837 Remove permissions from X-Okapi-Token (JWT) - convert module permissions to a permset

            • P2 - normal priority level, must be included in the current development cycle
            • Closed
            relates to

            Task - A task that needs to be done. FOLIO-2556 SPIKE: investigate refresh tokens support in FOLIO

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Closed

            Story - Created by Jira Software - do not edit or delete. Issue type for a user story. OKAPI-890 Implement Token Cache

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Closed

            New Feature - New feature requests MODLOGIN-119 change login API to return tokens in the body and not in private headers

            • P3 - low priority level, item will be considered for inclusion in the next dev cycle
            • Closed

            Activity

              People

                jakub Jakub Skoczen
                jakub Jakub Skoczen
                Votes:
                0 Vote for this issue
                Watchers:
                5 Start watching this issue

                Dates

                  Created:
                  Updated:

                  TestRail: Runs

                    TestRail: Cases