Galène videoconferencing server discussion list archives
 help / color / mirror / Atom feed
* [Galene] Help with JWT
@ 2021-10-26 19:12 Juliusz Chroboczek
  2021-10-26 19:47 ` [Galene] " Michael Ströder
       [not found] ` <a4ed9394-4515-ca8a-929c-0b7175a58c10@crans.org>
  0 siblings, 2 replies; 4+ messages in thread
From: Juliusz Chroboczek @ 2021-10-26 19:12 UTC (permalink / raw)
  To: galene

I'm currently working on third-party authentication for Galene using JWTs
("OAuth2" for those of you who like fancy enterprise acronyms), and I need
some help from people familiar with JWTs.

1. The username should be stored in "aud", right?

2. The group name should be stored in "sub", right?  Should that be the
   naked group name, or the full URL ?

3. Where do I stash the permissions granted to the user?  Should I use
   a "collision-resistant" claim name, say "https://galene.org/permissions",
   or is it enough to just use "permissions"?  Perhaps "galene-permissions"?

4. I'm planning to implement HS256 and ES256.  We good?

-- Juliusz

^ permalink raw reply	[flat|nested] 4+ messages in thread

end of thread, other threads:[~2021-11-03 19:10 UTC | newest]

Thread overview: 4+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-10-26 19:12 [Galene] Help with JWT Juliusz Chroboczek
2021-10-26 19:47 ` [Galene] " Michael Ströder
2021-10-26 21:10   ` Juliusz Chroboczek
     [not found] ` <a4ed9394-4515-ca8a-929c-0b7175a58c10@crans.org>
2021-11-03 19:10   ` graillot

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox