JWT Support

There are feature requests in Jakarta Security around [JWT](https://github.com/jakartaee/security/issues/255), but  as mentioned, the Jakarta-consuming [Microprofile JWT RBAC](https://github.com/eclipse/microprofile-jwt-auth) is not consumable by Jakarta Security or other specs at least on the API/Spec level.

Also while providing CDI wiring, MP JWT does not standardize decoding or encoding JWT similar to e.g. [Spring Security Oauth2 JWT](https://docs.spring.io/spring-security/site/docs/current/api/org/springframework/security/oauth2/jwt/package-summary.html) or
[JJWT](https://javadoc.io/doc/io.jsonwebtoken/jjwt-api/latest/index.html).

Beside that unlike Spring and others MP JWT also does not cover the [JOSE Header](https://www.rfc-editor.org/rfc/rfc7519#section-5) as of now.

Could: 
- JsonWebToken (or Jwt)
- JwtDecoder (or JwtParser)
- JwtEncoder (or JwtGenerator/Builder)
- Claims
- Headers

be standardized here under a "jwt" package or module?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Uh oh!

JWT Support #388

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

JWT Support #388

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions