About sweinhart

sweinhart · 02-10-2021

Hi. I have been tasked with converting opaque token to jwt. When using oauthv2 gen token policy, the list of allowed scopes as specified in the Product/App are populated. This doesn't seem to be the case when using Generate JWT policy. How do I trans...

sweinhart · 09-18-2020

I am trying to implement CORS policy and was told to store the allowed domains in kvm. This works, but then I was told that each domain stored needs its own allowed set of methods. Key naming restrictions wont allow me to use the Origin url as a key ...

sweinhart · 09-18-2020

I am trying to implement CORS policy and was told to store the allowed domains in kvm. This works, but then I was told that each domain stored needs its own allowed set of methods. Key naming restrictions wont allow me to use the Origin url as a key ...

sweinhart · 02-11-2021

yes thank you. I wasn't sure if was good practice to generate an opaque token, extracting parameters and then discarding it to generate a jwt, but your post answered the question.

sweinhart · 02-10-2021

Actually let me rephrase a bit. When using opaque tokens, the scopes generated in that token (which my understanding is a list of all scopes used by all the products associated with the API key/app) is the list of scopes I need to populate for jwt. T...

sweinhart · 02-10-2021

Thnx for reply Dino. I am not looking add the list of api products in claims. I'm looking to populate the scopes claim with those set in the API Product. I am trying to figure out how to retrieve those scopes after running the VerifyAPIKey policy so ...

My Stats

Josephine's Bio

Badges sweinhart Earned

Recent Activity

JWT Policy scopes

CORS allowed origins and methods

CORS allowed origins and methods

Re: JWT Policy scopes

Re: JWT Policy scopes

Re: JWT Policy scopes