Add auth logic for stomp clients over ws
All threads resolved!
All threads resolved!
This MR checks STOMP CONNECT frames for the jwt. A user connecting to STOMP will have to send the jwt as the header token
to the backend which authenticates it and caches the jwt for the underlying (stomp-)session-id.
Furthermore, when there is a header ars-user-id
, the backend checks if the user sending the request has authenticated himself and the given ars-user-id is the same as the one stored in the jwt.
Edited by Tom Käsler
Merge request reports
Activity
Filter activity
edit: @dgrh99
Edited by Tom Käsler- Resolved by Daniel Gerhardt
Always use
final
for method params in classes (not interfaces) by default. There should be an IntelliJ setting to do so.Edited by Daniel Gerhardt- Resolved by Daniel Gerhardt
- Resolved by Daniel Gerhardt
- Resolved by Daniel Gerhardt
- Resolved by Daniel Gerhardt
- Resolved by Daniel Gerhardt
- Resolved by Daniel Gerhardt
- Resolved by Daniel Gerhardt
mentioned in commit 29043042
Please register or sign in to reply