[MGNLSSO-9] Log more JWT token validation errors Created: 09/Sep/19 Updated: 16/Sep/19 Resolved: 16/Sep/19 |
|
| Status: | Closed |
| Project: | Single Sign On |
| Component/s: | None |
| Affects Version/s: | 2.1 Incubator, 2.2 Incubator |
| Fix Version/s: | None |
| Type: | Improvement | Priority: | Neutral |
| Reporter: | Joerg von Frantzius | Assignee: | Lars Fischer |
| Resolution: | Fixed | Votes: | 0 |
| Labels: | None | ||
| Remaining Estimate: | Not Specified | ||
| Time Spent: | Not Specified | ||
| Original Estimate: | Not Specified | ||
| Template: |
|
| Acceptance criteria: |
Empty
|
| Task DoD: |
[ ]*
Doc/release notes changes? Comment present?
[ ]*
Downstream builds green?
[ ]*
Solution information and context easily available?
[ ]*
Tests
[ ]*
FixVersion filled and not yet released
[ ] 
Architecture Decision Record (ADR)
|
| Date of First Response: |
| Description |
|
We had a hard time finding out that JWT validation failed due to the iat claim being in the future (relative to the Magnolia server time), because no further information is logged in this case. Provided Pull-Request with more logging, assuming this doesn't expose sensitive information in the log: https://git.magnolia-cms.com/projects/SERVICES/repos/sso-connector/pull-requests/4/diff |
| Comments |
| Comment by Lars Fischer [ 16/Sep/19 ] |
|
Code was merged. |