mirror of
https://github.com/elastic/elasticsearch.git
synced 2025-06-28 17:34:17 -04:00
bd10775b02
Introduces support for JWTs to the grant API Key API.
Callers can now pass-in a JWT in the request, like:
POST /_security/api_key/grant
{
"grant_type": "access_token",
"access_token" : "some.signed.JWT",
"client_authentication": { // optional
"scheme": "SharedSecret",
"value": "ES-Client-Authentication header value after scheme"
}
}
The JWT will be authenticated by a backing JWT realm and
a new API Key will be returned for the authenticated user.
|
||
|---|---|---|
| .. | ||
| auditing | ||
| authentication | ||
| authorization | ||
| ccs-clients-integrations | ||
| images | ||
| operator-privileges | ||
| reference | ||
| securing-communications | ||
| configuring-stack-security.asciidoc | ||
| enroll-nodes.asciidoc | ||
| es-security-principles.asciidoc | ||
| fips-140-compliance.asciidoc | ||
| fips-java17.asciidoc | ||
| index.asciidoc | ||
| limitations.asciidoc | ||
| security-manual-configuration.asciidoc | ||
| troubleshooting.asciidoc | ||
| using-ip-filtering.asciidoc | ||