Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Enforce type header validation not working in APIM 4.1.0 when using IS 5.11 as KM #3096

Open
JanakaPushpakumara opened this issue Sep 4, 2024 · 0 comments
Open

Enforce type header validation not working in APIM 4.1.0 when using IS 5.11 as KM #3096

JanakaPushpakumara opened this issue Sep 4, 2024 · 0 comments
Labels
Missing/Component Type/Bug

Comments

@JanakaPushpakumara
Copy link

Description

When using apim 4.1.0.170 and is 5.11.0.370 as a KM. whewn we use the below param which was introduced with https://github.com/wso2-enterprise/wso2-apim-internal/issues/6576 in apim gateway deployment.toml.

[apim.token.validation]
enforce_type_header_validation = true

it didn't work because WSO2 IS (as key-manager) still produced access tokens without "typ" header however this type header is available in the token which was generated in IS 6.1.0 and the above param and fix is working for IS KM 6.1.0

The type heander added with the git issue in wso2/product-apim#11703

Thanks,
Janaka.

Steps to Reproduce

  1. Setting up the APIM 4.1.0 and IS 5.11 as KM.
  2. Enable the below property in the APIM to enforce type header for token validation.
    [apim.token.validation]
    enforce_type_header_validation = true

Affected Component

APIM

Version

4.1.0

Environment Details (with versions)

No response

Relevant Log Output

No response

Related Issues

No response

Suggested Labels

wso2am-4.1.0
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
Missing/Component Type/Bug
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@JanakaPushpakumara