Google Git
Sign in
gerrit / plugins / cfoauth / cb912f3a48d44459a6b5b961904d3a27fcc6ea7e
commitcb912f3a48d44459a6b5b961904d3a27fcc6ea7e[log] [tgz]
authorMichael Ochmann <michael.ochmann@sap.com>Tue Jun 20 14:30:53 2017 +0200
committerMichael Ochmann <michael.ochmann@sap.com>Tue Jun 20 14:30:53 2017 +0200
treeedc21afa56f6c8d2025b84b1cd56e5f4dbcd6908
parenta8e61e928234ebdaa088a4364cc1de708f6b7a94 [diff]
Support RS256 and HS256 algorithm aliases

Older versions of CF/XSA UAA used the identifiers
SHA256withRSA or HMACSHA256 to specify the algorithm
 used to sign OAuth 2 access tokens they issued.

Newer CF/XSA UAA versions, however, prefer the following
identifiers:

RS256 (common alias for SHA256withRSA)
HS256 (common alias for HMACSHA256)

Most other implementations of JSON web tokens (e.g. OpenId)
also prefer these aliases over the more specific identifiers.
Consequently, the cfoauth plugin should support them, too.

Change-Id: Ib1786552e08be8583c5360243acd215e7193abdd
Signed-off-by: Michael Ochmann <michael.ochmann@sap.com>
1 file changed
tree: edc21afa56f6c8d2025b84b1cd56e5f4dbcd6908
  1. lib/
  2. src/
  3. .buckconfig
  4. .gitignore
  5. BUCK
  6. BUILD
  7. external_plugin_deps.bzl
  8. LICENSE
  9. LICENSE-scribe
  10. README.md
  11. VERSION
README.md

Cloud Foundry UAA OAuth 2.0 Authentication Provider

With this plugin Gerrit can use OAuth2 protocol to authenticate users accessing Gerrit's Web UI with a CloudFoundry User Account and Authentication (UAA) server. The Sign In link will redirect the user to the UAA login screen.

For Git-over-HTTP communication users still need to generate and use an HTTP password.

License

Apache License 2.0