Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Path component for issuer identifier should be disabled by default #1611

Closed
jgrandja opened this issue May 9, 2024 · 0 comments
Closed

Path component for issuer identifier should be disabled by default #1611

jgrandja opened this issue May 9, 2024 · 0 comments
Assignees
Labels
type: enhancement A general enhancement
Milestone

Comments

@jgrandja
Copy link
Collaborator

jgrandja commented May 9, 2024

Using path components in the URL of the issuer identifier enables supporting multiple issuers per host in a multi-tenant hosting configuration.

Support for path components was added in gh-1342 and is enabled by default.

However, this feature should be disabled by default, since there are a few implementation details required in order to provide a fully multi-tenant capable authorization server. Some of the primary requirements include isolation of client registration and authorization data between tenants, as well as, signing keys used per tenant.

Related gh-1342, gh-663

@jgrandja jgrandja added the type: enhancement A general enhancement label May 9, 2024
@jgrandja jgrandja added this to the 1.3.0 milestone May 9, 2024
@jgrandja jgrandja self-assigned this May 9, 2024
@jgrandja jgrandja moved this to In Progress in Spring Security Team May 9, 2024
@jgrandja jgrandja changed the title Issuer path component should be disabled by default Path component for issuer identifier should be disabled by default May 9, 2024
@jgrandja jgrandja moved this from In Progress to Done in Spring Security Team May 9, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
type: enhancement A general enhancement
Projects
Status: Done
Development

No branches or pull requests

1 participant