mpJwt - MicroProfile JWT (mpJwt)

The configuration to process the MicroProfile JWT token.

NameTypeDefaultDescription
idstringThe unique ID.
issuerstringThe url of the issuer.
jwksUristringSpecifies a JSON Web Key service URL.
userNameAttributestringupnThe value of the claim will be used as user principal to authenticate.
sslRefA reference to top level ssl element (string).Specifies an ID of the SSL configuration that is used for SSL connections.
keyNamestringSpecifies a trusted key alias for using the public key to verify the signature of the token.
groupNameAttributestringgroupsThe value of the claim will be used as the user group membership.
mapToUserRegistrybooleanfalseSpecifies whether to map userIdentifier to a registry user.
tokenReusebooleantrueSpecifies whether the token can be re-used.
clockSkewA period of time with millisecond precision5mThis is used to specify the allowed clock skew in minutes when validating the JSON web token. Specify a positive integer followed by a unit of time, which can be hours (h), minutes (m), seconds (s), or milliseconds (ms). For example, specify 500 milliseconds as 500ms. You can include multiple values in a single entry. For example, 1s500ms is equivalent to 1.5 seconds.
ignoreApplicationAuthMethodbooleantrueIgnore the configured authentication method in the application. Allow legacy applications that do not configure MP-JWT as their authentication method to use MicroProfile JWT token if one is included in the request.

audiences

The trusted audience list to be included in the aud claim in the JSON web token.