New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

JWT signer secondary auth: not enough information to continue #2478

Open

ekoby opened this issue Oct 11, 2024 · 1 comment

Assignees

Labels

bug

Member

ekoby commented Oct 11, 2024 •

edited

Loading

if I set up an auth policy with JWT signer as secondary auth and authenticate with key/cert I get an api session (irrelevant field removed):

  "authQueries": [
    {
      "provider": "url",
      "typeId": "EXT-JWT"
    }
  ],
  "identityId": "JTR.7wXlT",

  "isMfaComplete": false,
  "isMfaRequired": false
}

authQueries does not give enough information to start OIDC authentication (url, clientId, claim, audience are needed)
maybe external signer id/name would be enough to do a lookup
should isMfaRequired be set? I think that's the case with TOTP secondary

The text was updated successfully, but these errors were encountered:

Member

andrewpmartinez commented Oct 11, 2024

This was confirmed to be an issue in legacy authentication.

andrewpmartinez self-assigned this

andrewpmartinez added the bug label

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment