Set JWT for portal login

wso2 · Mar 3, 2024 · e2b1230 · e2b1230
1 parent 19a15c8
commit e2b1230
Show file tree

Hide file tree

Showing 3 changed files with 28 additions and 0 deletions.
diff --git a/portals/admin/src/main/webapp/services/login/idp.jsp b/portals/admin/src/main/webapp/services/login/idp.jsp
@@ -121,6 +121,15 @@
                 dcrRequestData.put("grantType", "authorization_code refresh_token");
                 dcrRequestData.put("saasApp", true);
 
+                Object isJWTEnabledObj = Util.readJsonObj(settingsResponse, "IsJWTEnabledForLoginTokens");
+                if (isJWTEnabledObj != null && isJWTEnabledObj instanceof Boolean) {
+                    boolean isJWTEnabledForLoginTokens = (boolean) isJWTEnabledObj;
+                    if (isJWTEnabledForLoginTokens) {
+                        dcrRequestData.put("tokenType", "JWT");
+                        dcrRequestData.put("userStoreDomainInSubject", true);
+                    }
+                }
+
                 HttpRequest postReq = HttpRequest.newBuilder()
                         .uri(URI.create(dcrUrl))
                         .POST(HttpRequest.BodyPublishers.ofString(gson.toJson(dcrRequestData)))

diff --git a/portals/devportal/src/main/webapp/services/login/idp.jsp b/portals/devportal/src/main/webapp/services/login/idp.jsp
@@ -131,6 +131,16 @@
                 dcrRequestData.put("owner", (String) APIUtil.getTenantAdminUserName(serviceProviderTenantDomain));
                 dcrRequestData.put("grantType", "authorization_code refresh_token");
                 dcrRequestData.put("saasApp", true);
+
+                Object isJWTEnabledObj = Util.readJsonObj(settingsResponse, "IsJWTEnabledForLoginTokens");
+                if (isJWTEnabledObj != null && isJWTEnabledObj instanceof Boolean) {
+                    boolean isJWTEnabledForLoginTokens = (boolean) isJWTEnabledObj;
+                    if (isJWTEnabledForLoginTokens) {
+                        dcrRequestData.put("tokenType", "JWT");
+                        dcrRequestData.put("userStoreDomainInSubject", true);
+                    }
+                }
+                
                 log.debug(dcrRequestData);
                 HttpRequest postReq = HttpRequest.newBuilder()
                         .uri(URI.create(dcrUrl))

diff --git a/portals/publisher/src/main/webapp/services/login/idp.jsp b/portals/publisher/src/main/webapp/services/login/idp.jsp
@@ -148,6 +148,15 @@
                 dcrRequestData.put("grantType", "authorization_code refresh_token");
                 dcrRequestData.put("saasApp", true);
 
+                Object isJWTEnabledObj = Util.readJsonObj(settingsResponse, "IsJWTEnabledForLoginTokens");
+                if (isJWTEnabledObj != null && isJWTEnabledObj instanceof Boolean) {
+                    boolean isJWTEnabledForLoginTokens = (boolean) isJWTEnabledObj;
+                    if (isJWTEnabledForLoginTokens) {
+                        dcrRequestData.put("tokenType", "JWT");
+                        dcrRequestData.put("userStoreDomainInSubject", true);
+                    }
+                }
+
                 HttpRequest postReq = HttpRequest.newBuilder()
                         .uri(URI.create(dcrUrl))
                         .POST(HttpRequest.BodyPublishers.ofString(gson.toJson(dcrRequestData)))