OTTokenVerifierValve
Verifies a JWT token issued by Phenixid One touch. Note that module "phenix-replay-cache" must be deployed for ensuring replay protection.
Properties
Example Configuration
{
"name": "OTTokenVerifierValve",
"enabled": "true",
"config": {
}
}Requirements
- The incoming request must contiain parameter access_token.
- Module phenix-replay-cache must be deployed ensuring replay protection.
General information
On successful validation two item properties are created:
- subject - containing the value of the sub parameter from the JWT token payload. Typically the username used when activated PhenixID One Touch
- token_issuer - containing the value of the iss parameter from the JWT token payload. Typically the name of the issuing PhenixID One Touch service.
- If no item is present at execution time a new will be created with id identical to the sub from the JWT token.