I have put together a set of code based on the work from Camunda’s Authentication providers and the Camunda GraphQL jwt usage, where you can use a JWT token to authenticate with Camunda, and the Token will contain the Username, Group List and Tenant List that your action will be part of.
Anyone have use for this? We use it because of the way that we typically interact with Camunda, where Camunda is a generic microservice that does not have users other than the Admins. But in some cases we wanted to inject a user’s groups, Tenant(s), and their username so gain access to things like getCurrentUser().
This ‘plugin’ does not provide the JWT Provider, it is purely a validator of the JWT and then grabs the relevant data from the JWT and injects it into the engine’s identity service as the current logged in user.