-
Notifications
You must be signed in to change notification settings - Fork 62
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
JWT Authentication issues #126
Comments
@rswickedwayz as per https://docs.couchdb.org/en/stable/api/server/authn.html#jwt-authentication, you need to set the For example:
If this doesn't work, check the ini file in the configmap created by the Helm chart. It's possible that |
I found this syntax which seems to work :
|
Describe the bug
A clear and concise description of what the bug is.
I've been trying to enable JWT Authenitcation handler so an RSA token can be used to authenticate. I'm having difficulty getting this to work in my clustered couchdb environment.
Version of Helm and Kubernetes:
helm ver 4.2.1
Kubernetes v1.24
What happened:
I am trying to enable JWT authentication inside my values.yaml. It does not appear to be working. When I curl this it only returns cookie and default as the authentication handlers.
curl https://admin:[email protected]/_session
it returns this:
{"ok":true,"userCtx":{"name":"admin","roles":["_admin"]},"info":{"authentication_handlers":["cookie","default"],"authenticated":"default"}}
Entries inside values.yaml were placed under couchdbConfig.
couchdbConfig:
couchdb:
authentication_handlers: "{chttpd_auth, jwt_authentication_handler}, {chttpd_auth, cookie_authentication_handler}, {chttpd_auth, default_authentication_handler}"
jwt_authentication_handler:
rsa_public_key: "/couchdb/couchdb_public_key.pem"
What you expected to happen:
I expect it to return jwt as one of the authentication_handlers.
{"ok":true,"userCtx":{"name":"admin","roles":["_admin"]},"info":{"authentication_handlers":["cookie","jwt","default"],"authenticated":"default"}}
How to reproduce it (as minimally and precisely as possible):
Anything else we need to know:
The text was updated successfully, but these errors were encountered: