Return-Path: X-Original-To: archive-asf-public-internal@cust-asf2.ponee.io Delivered-To: archive-asf-public-internal@cust-asf2.ponee.io Received: from cust-asf.ponee.io (cust-asf.ponee.io [163.172.22.183]) by cust-asf2.ponee.io (Postfix) with ESMTP id B87EB200C29 for ; Tue, 28 Feb 2017 14:36:39 +0100 (CET) Received: by cust-asf.ponee.io (Postfix) id B576E160B7C; Tue, 28 Feb 2017 13:36:39 +0000 (UTC) Delivered-To: archive-asf-public@cust-asf.ponee.io Received: from mail.apache.org (hermes.apache.org [140.211.11.3]) by cust-asf.ponee.io (Postfix) with SMTP id 0A573160B6A for ; Tue, 28 Feb 2017 14:36:38 +0100 (CET) Received: (qmail 8225 invoked by uid 500); 28 Feb 2017 13:36:38 -0000 Mailing-List: contact reviews-help@mesos.apache.org; run by ezmlm Precedence: bulk List-Help: List-Unsubscribe: List-Post: List-Id: Reply-To: reviews@mesos.apache.org Delivered-To: mailing list reviews@mesos.apache.org Received: (qmail 8206 invoked by uid 99); 28 Feb 2017 13:36:37 -0000 Received: from reviews-vm.apache.org (HELO reviews.apache.org) (140.211.11.40) by apache.org (qpsmtpd/0.29) with ESMTP; Tue, 28 Feb 2017 13:36:37 +0000 Received: from reviews.apache.org (localhost [127.0.0.1]) by reviews.apache.org (Postfix) with ESMTP id 80AE831B596; Tue, 28 Feb 2017 13:36:37 +0000 (UTC) Content-Type: multipart/alternative; boundary="===============6463805889031480599==" MIME-Version: 1.0 Subject: Re: Review Request 56753: Implemented the JWT authenticator. From: Jan Schlicht To: Greg Mann , Alexander Rojas Cc: Mesos Reviewbot , Jan Schlicht , mesos Date: Tue, 28 Feb 2017 13:36:37 -0000 Message-ID: <20170228133637.32557.30369@reviews.apache.org> X-ReviewBoard-URL: https://reviews.apache.org/ Auto-Submitted: auto-generated Sender: Jan Schlicht X-ReviewGroup: mesos X-Auto-Response-Suppress: DR, RN, OOF, AutoReply X-ReviewRequest-URL: https://reviews.apache.org/r/56753/ X-Sender: Jan Schlicht References: <20170228133603.32557.12952@reviews.apache.org> In-Reply-To: <20170228133603.32557.12952@reviews.apache.org> X-ReviewBoard-Diff-For: 3rdparty/libprocess/src/basic_authenticator.cpp X-ReviewBoard-Diff-For: 3rdparty/libprocess/src/authenticator.cpp X-ReviewBoard-Diff-For: 3rdparty/libprocess/src/jwt_authenticator.cpp Reply-To: Jan Schlicht X-ReviewRequest-Repository: mesos archived-at: Tue, 28 Feb 2017 13:36:39 -0000 --===============6463805889031480599== MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit ----------------------------------------------------------- This is an automatically generated e-mail. To reply, visit: https://reviews.apache.org/r/56753/ ----------------------------------------------------------- (Updated Feb. 28, 2017, 2:36 p.m.) Review request for mesos, Alexander Rojas and Greg Mann. Bugs: MESOS-7001 https://issues.apache.org/jira/browse/MESOS-7001 Repository: mesos Description ------- This HTTP authenticator extracts a JWT from the requests' authorization header using the 'Bearer' schema and validates it against a secret using HMAC SHA256. The 'sub' claim of the JWT is the extracted principal, all other claims will be additional labels of the 'AuthenticationContext'. Diffs ----- 3rdparty/libprocess/Makefile.am 75386184108214e67a58c328258ec204099d638c 3rdparty/libprocess/include/process/authenticator.hpp e5489c6cb4adc8a822e7dd4515542618c36136f9 3rdparty/libprocess/src/authenticator.cpp cfedb6f7674e0f6690e77a633cdd1bd494c7d2c7 3rdparty/libprocess/src/jwt_authenticator.cpp PRE-CREATION 3rdparty/libprocess/src/tests/http_tests.cpp fb4da9aecff0370d97a15269c5d8fffb30e0478f Diff: https://reviews.apache.org/r/56753/diff/ Testing ------- make check Thanks, Jan Schlicht --===============6463805889031480599==--