Skip to content
This repository was archived by the owner on Jul 11, 2025. It is now read-only.

Optional JWT authorisation middleware for API #11

Merged
merged 14 commits into from
Sep 23, 2024
Merged

Optional JWT authorisation middleware for API #11

merged 14 commits into from
Sep 23, 2024

Conversation

PeterBaker0
Copy link
Collaborator

Adds an optional middleware to the Oxygen API which

  • fetches the public key from WKT
  • parses the JWT
  • ensures it validates against pub key
  • ensures the iss field matches the configured JWT issuer

See new README for description of config fields.

Currently protection is added on a per route basis so that the "/" path can remain open for health checks.

@PeterBaker0
Working on JWT middleware to just validate tokens.
ab5c1d5 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@PeterBaker0
Adding JSON dependency and global JWT middleware
8651105 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@PeterBaker0
Making jwt config separate module, adding http test
40f0cc9 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@PeterBaker0
Adding README
f256df3 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@PeterBaker0
Puts auth on specific routes
a8328a9 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@PeterBaker0
Forcing github docker build
80a8e1e 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
PeterBaker0
PeterBaker0 commented Sep 23, 2024
View reviewed changes
Manifest.toml Outdated
Copy link
Collaborator Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

This doesn't have JSON in it which could be the problem.

Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Defs is!

PeterBaker0 and others added 3 commits September 23, 2024 14:15
@PeterBaker0
CORS middleware
45ea47f 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@PeterBaker0
Adding todo
fbae578 
Signed-off-by: Peter Baker <peter.baker122@csiro.au>
@arlowhite
fix stray using, functions on new line to make syntax-checker happy
d3a4fa8
ConnectedSystems
ConnectedSystems reviewed Sep 23, 2024
View reviewed changes
src/Middleware.jl Outdated
end

return jwt_auth_middleware
end
Copy link
Collaborator

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Set up your formatter to ensure newlines at EOF please

@ConnectedSystems ConnectedSystems merged commit 1d4b296 into main Sep 23, 2024
1 check passed
@ConnectedSystems ConnectedSystems deleted the jwt-auth branch September 23, 2024 08:50
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Reviewers

@ConnectedSystems ConnectedSystems ConnectedSystems left review comments

@arlowhite arlowhite Awaiting requested review from arlowhite

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
3 participants
@PeterBaker0 @ConnectedSystems @arlowhite