root
/
rabbitmq-server
mirror of https://github.com/rabbitmq/rabbitmq-server.git
1
0
Fork 0
Code Issues Actions Packages Projects Releases Wiki Activity

Document JWKS support

This commit is contained in:
Teo Klestrup Röijezon 2021-02-05 12:01:38 +01:00
parent 1a3d68be37
commit 91add59b9a
1 changed files with 16 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

16
deps/rabbitmq_auth_backend_oauth2/README.md vendored
View File

@ -122,6 +122,22 @@ If a symmetric key is used, the configuration will look like this:
].
```
The key set can also be retrieved dynamically from a URL serving a [JWK Set](https://tools.ietf.org/html/rfc7517#section-5).
In that case, the configuration will look like this:
```erlang
[
{rabbitmq_auth_backend_oauth2, [
{resource_server_id, <<"my_rabbit_server">>},
{key_config, [
{jwks_url, "https://my-jwt-issuer/jwks.json"}
]}
]},
].
```
NOTE: `jwks_url` takes precedence over `signing_keys` if both are provided.
### Resource Server ID and Scope Prefixes
OAuth 2.0 (and thus UAA-provided) tokens use scopes to communicate what set of permissions particular