Skip to content

feature test: JWT bearer across zones #3348

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
strehle merged 5 commits into from
Mar 14, 2025
Merged

feature test: JWT bearer across zones #3348

strehle merged 5 commits into from
Mar 14, 2025
+348 −0

Conversation

@strehle
Copy link
Member

@strehle strehle commented Mar 13, 2025
edited
Loading

The test uses 3 zones in UAA to represent
3 identity organizations.

UAA zone with marisaa is the Issuer treated as Trusted Corporate Token
Testzone3 is the proxy which trusts UAA zone.
Testzone4 is the consumer organisation, which trusts testzone3.

This PR needs #3344
because jwt bearer should / must return an id_token if the client is configured with openid, similar to password grant.

After #3309
The test can be finalized so that a token from UAA zone can be conumed in testzone4 which has not direct trust to UAA zone.
The login_hint in request signalize the IdP that token is not from testzone3 but testzone3 should validate it first after that testzone3 can create an assertion for testzone4

strehle added 2 commits March 12, 2025 18:50
@strehle
fix: Jwt Bearer should be able to return id_token
f1feb70 
I think it was simply forgotten to allow it, but
in documentation there is response_type with "token id_token", but the flow is not allowed to return it.
Fix this
@strehle
feature test: Test JWT bearer across zones
4f73bf8 
The test uses 3 zones in UAA to represent
3 identity zones.

This PR needs #3344
because jwt bearer should / must return an id_token if the client is configured with openid, similar to password grant.
@strehle strehle changed the title Feature integration test feature test: Test JWT bearer across zones Mar 13, 2025
@strehle strehle requested a review from a team March 13, 2025 09:57
@strehle strehle changed the title feature test: Test JWT bearer across zones feature test: JWT bearer across zones Mar 13, 2025
@github-project-automation github-project-automation bot moved this from Inbox to Pending Merge | Prioritized in Foundational Infrastructure Working Group Mar 13, 2025
@strehle strehle merged commit 70ffb30 into develop Mar 14, 2025
22 checks passed
@strehle strehle deleted the featureIntegrationTest branch March 14, 2025 14:14
@github-project-automation github-project-automation bot moved this from Pending Merge | Prioritized to Done in Foundational Infrastructure Working Group Mar 14, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@fhanik fhanik fhanik approved these changes

Assignees

No one assigned

Labels

None yet

Projects

Foundational Infrastructure Working Group
Status: Done

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@strehle @fhanik