Class JWTAuthenticator

  • All Implemented Interfaces:
    NuxeoAuthenticationPlugin

    public class JWTAuthenticator
    extends Object
    implements NuxeoAuthenticationPlugin
    JSON Web Token (JWT) Authentication Plugin.

    The Authorization Bearer token from the headers is checked with the JWTService for validity, and if it is valid the authentication is done for the token's subject.

    If an "aud" claim (JWTClaims.CLAIM_AUDIENCE) is present in the token, it must be a prefix of the request HTTP path info (excluding the web context). This allows limiting tokens for specific URL patterns.

    Since:
    10.3