Skip to content

Add option to remove traits or roles from the app JWT header #29687

Merged
lxea merged 1 commit intomasterfrom
lxea/jwt-rewrite
Aug 8, 2023
Merged

Add option to remove traits or roles from the app JWT header #29687
lxea merged 1 commit intomasterfrom
lxea/jwt-rewrite

Conversation

@lxea
Copy link
Copy Markdown
Contributor

@lxea lxea commented Jul 27, 2023

Fixes #23924

Implemented as suggested here #23924 (comment)

@github-actions github-actions Bot requested review from mdwn and zmb3 July 27, 2023 14:47
@lxea lxea force-pushed the lxea/jwt-rewrite branch from 28bff06 to b87c13a Compare July 27, 2023 15:01
zmb3
zmb3 reviewed Jul 27, 2023
View reviewed changes
Comment thread api/types/app.go Outdated
Comment thread api/types/app.go Outdated
Comment thread api/types/app.go Outdated
Comment thread api/types/app.go Outdated
Comment thread lib/srv/app/session.go Outdated
@lxea
Copy link
Copy Markdown
Contributor Author

lxea commented Aug 2, 2023

@mdwn friendly ping :)

r0mant
r0mant reviewed Aug 2, 2023
View reviewed changes
Comment thread api/proto/teleport/legacy/types/types.proto Outdated
Comment thread api/proto/teleport/legacy/types/types.proto Outdated
Comment thread api/proto/teleport/legacy/types/types.proto Outdated
Comment thread api/types/app.go Outdated
@lxea lxea force-pushed the lxea/jwt-rewrite branch from d95d765 to 87748cc Compare August 3, 2023 10:14
r0mant
r0mant approved these changes Aug 4, 2023
View reviewed changes
Copy link
Copy Markdown
Collaborator

@r0mant r0mant left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please test backwards compatibility but otherwise lgtm.

Add option to configure JWT claim rewriting
4eb4498 
stringify & remove the jwt values when asked

Plumb up the file configuration

Add a test for jwt token rewriting

resolve comments

Use string instead of enum
@lxea lxea force-pushed the lxea/jwt-rewrite branch from 87748cc to 4eb4498 Compare August 8, 2023 10:14
@public-teleport-github-review-bot public-teleport-github-review-bot Bot removed the request for review from mdwn August 8, 2023 10:14
@lxea lxea enabled auto-merge August 8, 2023 10:15
@lxea lxea added this pull request to the merge queue Aug 8, 2023
Merged via the queue into master with commit 91471f6 Aug 8, 2023
@lxea lxea deleted the lxea/jwt-rewrite branch August 8, 2023 10:47
@r0mant
Copy link
Copy Markdown
Collaborator

r0mant commented Aug 8, 2023

@lxea Can you please send a follow up PR to document this?

@lxea lxea mentioned this pull request Aug 10, 2023
Merged
@programmerq
Copy link
Copy Markdown
Contributor

programmerq commented Aug 10, 2023

Will this be backported to any release branches?

@r0mant
Copy link
Copy Markdown
Collaborator

r0mant commented Aug 10, 2023

@programmerq Yes, we will backport to all active release branches.

This was referenced Aug 10, 2023
Merged
Merged
Merged
@programmerq programmerq mentioned this pull request Feb 17, 2026
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@r0mant r0mant r0mant approved these changes

@zmb3 zmb3 zmb3 approved these changes

Assignees

No one assigned

Labels

application-access size/md

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Add option to disable JWT headers

4 participants

@lxea @r0mant @programmerq @zmb3