-
Notifications
You must be signed in to change notification settings - Fork 80
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Keyrock API should accept standard Authorization HTTP header #130
Comments
I think the problem lies here: https://github.com/ging/fiware-idm/blob/master/controllers/api/authenticate.js#L127-L129 - the check needs to OR between the X-Auth-Token and the bearer at this point. |
Hi @jason-fox , please assign this issue to me. |
I can't assign issues - @aalonsog @apozohue10 - can you help? |
hii @jason-fox Could you please help me to know if the behaviour for "npm run test" is same or something different from this or their is some missing configuration? |
That warning is found in the Docker These warnings occur when values such as the |
Hi @jason-fox |
Merged PR |
Related: FIWARE/tutorials.Identity-Management#5
According to rfc6750, the standard location for a authorization token is Authorization: Bearer
see: https://tools.ietf.org/html/rfc6750#page-5
Within the Keyrock API, X-Auth-Token is used e.g.:
However the following should also be valid:
This already works within the Wilma PEP Proxy - X-Auth-Token and Authorization: Bearer are interchangable.
The text was updated successfully, but these errors were encountered: