Login to camunda web app using JWT token

pradeep.poojari · October 5, 2020, 11:16am

Hi,

I have developed Auth service as a separate service that connects to IDP provider does the authentication and provides JWT token.

Then I pass on this JWT token to Camunda service ( Spring Boot embedded) in the request header and added filter validate JWT token and parse the JWT and create UsernamePasswordAuthenticationToken and set into SecurityContextHolder .

Then I registered these two filter one for Camunda Web App (ContainerBasedAuthenticationFilter) and another one for REST api (ProcessEngineAuthenticationFilter) .

I then implemented a class that implements the org.camunda.bpm.engine.rest.security.auth.AuthenticationProvider interface.

With this approach, I was able to call Camunda REST api with JWT token. But I was unable to login to Camunda web app ( as I was unable to pass token in header ) .

I would like know is there any way we will be able to login to Camunda UI using JWT ?

StephenOTT · October 26, 2020, 8:26pm

@pradeep.poojari web apps is a different application, so you need to configure the filters for the web app.

pradeep.poojari · November 2, 2020, 9:04am

Thanks @StephenOTT , I was successfully able to implement login to webapp using JWT.

I am storing JWT token in browser cookies and reading the cookies in Filter and passing it on an authenticated user to ContainerBasedAuthenticationFilter.

brijoyj · January 24, 2022, 9:02pm

Can you post u r code snippet here?

system · January 30, 2024, 12:40pm