Unlike the Tasklist, Cockpit & Admin which are distributed as one springboot starters and allow for custom security filters to be added to the encapsulating Springboot app, Optimize, which is distributed as a runnable JAR, thus we lose ability to add custom authentication filter.
Is there a recommended solution to solving this?
One possible solution was to proxy Optimize with Nginx, where Nginx does the OAuth redirection & JWT validation, but do not know how to pass a valid request’s username to Optimize from Nginx. We are stuck there.
We are trying to secure Optimize with OAuth/JWT, which is our organization’s SSO.
With Authorization being done by the SSO, and each request going forward containing the Bearer token(JWT).
How do we pass the userName from the bearer token to Optimize?
Or within Optimize, how do we parse a bearer token that was passed in to utilize the userName / roles / scopes associated with it?
We would like to create & config a custom security filter within Optimize - is there any way to do this?
There you can read the request information, e.g. bearer information, and the check if the user is entitled to access Optimize. Does that cover your user-case?