[Pulp-dev] Pulp 3: using JWT to request a JWT
Dennis Kliban
dkliban at redhat.com
Tue Nov 28 22:34:39 UTC 2017
Our MVP doc currently states "As an API user, I can authenticate any API
call (except to request a JWT) with a JWT. (not certain if this should be
the behavior) [in progress]"
The uncertainty was due to the "except to request a JWT" clause.
I propose that Pulp 3 should support requesting a new JWT by using an
existing JWT. Automated systems that integrate with Pulp would benefit from
being able to renew tokens using an existing token.
Enabling this feature with django-rest-framework-jwt requires also
selecting the maximum amount of time since original token was issued that
the token can be refreshed. The default is 7 days. Pulp users should be
able to supply this value. Thy should also be able to specify how long each
token is good for.
What do others think?
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/pulp-dev/attachments/20171128/014a018d/attachment.htm>
More information about the Pulp-dev
mailing list