Skip to content

25.6 Antalya: Token Authentication and Authorization #920

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
wants to merge 16 commits into
base: antalya-25.6.5
Choose a base branch
from
Open

25.6 Antalya: Token Authentication and Authorization #920

wants to merge 16 commits into from

Conversation

zvonand
Copy link
Collaborator

@zvonand zvonand commented Jul 16, 2025
edited
Loading

Introduce authentication using access tokens.

TODO:
  • OIDC processor -- also lookup token expiry timestamp in introspection endpoint
  • OIDC processor --support for custom endpoint for groups lookup
  • better docs
  • better QA

Changelog category (leave one):

  • New Feature

Changelog entry (a user-readable short description of the changes that goes to CHANGELOG.md):

Introduce access token authentication.

Exclude tests:

  • Fast test
  • Integration Tests
  • Stateless tests
  • Stateful tests
  • Performance tests
  • All with ASAN
  • All with TSAN
  • All with MSAN
  • All with UBSAN
  • All with Coverage
  • All with Aarch64
  • All Regression
  • Disable CI

@zvonand zvonand mentioned this pull request Jul 16, 2025
Closed
1 task
@github-actions GitHub Actions
Copy link

github-actions bot commented Jul 17, 2025
edited
Loading

Workflow [PR], commit [96f4a31]

@zvonand zvonand changed the base branch from antalya-25.6 to antalya-25.6.5 August 5, 2025 09:56
@zvonand zvonand force-pushed the oauth-antalya-25.6 branch 2 times, most recently from 57807c8 to 7498a03 Compare August 7, 2025 20:22
zvonand and others added 15 commits August 28, 2025 15:04
@zvonand
Squashed all JWT auth
d3fab19 
Add aspell

Enable jwt-cpp in fasttest

Add test + some minor improvements

reduce unneeded possible clash points

fix parsing create user identified with jwt

refactor + fix not lowercase

update test

fix typo in docs

fix logical_error

some refactor

fix alg in jwks

fix jwks

fix user auth method not being checked

update docs

better exception on no sub claim

throw exception if algo not specified in jwk

Support access token authorization of existing users

Also possible to filter users by e-mail using regex

fix token accessstorage

Add Azure token processor, move JWKS logic to separate file

remove docs that will be obsolete in future

remove redundant

resolve tokenCredentials on creation

add basic docs for oauth

add caching, cleanup bs

fix credentials cast + some better code

fix include

fix invalid token handling

add basic openid auth
@zvonand
add keykloak support(2)
c77bac4
@zvonand
fix build
d4bf140
@zvonand
shitty fix for a shitty problem
a7f8a56
@zvonand
small fixes
5448194
@zvonand
better docs, small fixes
3c4857b
@zvonand
pre-refactor tmp commit
485989b
@zvonand
major refactor
e5b30e5
@zvonand
tidy fix, cleanup
1c91762
@zvonand
fix build
0bc5bda
@zvonand
upload new doc version
70a749a
@zvonand
one more fix
b2ebb72
@zvonand
minor docs update + exception fix
f292f39
@zvonand
better docs
ad0cbc0
@zvonand
fix typo
cea8da4
@zvonand zvonand force-pushed the oauth-antalya-25.6 branch from 88db3e1 to cea8da4 Compare August 28, 2025 13:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers
No reviews
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@zvonand