Skip to:

  1. Skip to Jira Navigation
  2. Skip to Side Navigation
  3. Skip to Main Content

Support custom/additional metadata policy operators

Description

Our metadata policy implementation currently supports the operators specified in the OpenID federation spec draft. The policies are exploited in the dynamic registration endpoint and for validating requests from unregistered clients. Those use cases could exploit some additional operators, such as wiring a bean for validating a parameter/claim value.

Environment

None

Activity

Show:

Henri MikkonenApril 4, 2024 at 10:47 AM

Integred at OP

Henri MikkonenFebruary 16, 2024 at 11:23 AM

Modified the MetadataPolicyHelper.mergeMetadataPolicies -method to merge custom operators. They’re treated in the same way as default, value and regex operators, i.e. merging is only allowed if they operator values are equal.

Henri MikkonenJanuary 19, 2024 at 12:43 PM

Extended the MetadataPolicy -class to contain a map of custom metadata policy operators. The default policy enforcer and validator functions be wired with a map of CustomMetadataPolicyOperator , key describing the operator name used within the metadata policies.

An example implementation BeanMetadataPolicyOperator can be used for referring a global bean that implements the CustomMetadataPolicyOperator interface as a custom metadata policy operator.

TODO: integrate at OP

Completed

Details

Assignee

Reporter

Components

Fix versions

Created January 19, 2024 at 6:52 AM
Updated April 4, 2024 at 10:47 AM
Resolved April 4, 2024 at 10:47 AM