Content
View differences
Updated by Jan Sandbrink about 1 year ago
**As** an administrator a \[enter role of user\]
**I want to** be able to accept JWTs issued in a client credentials flow, \[enter objective\]
**so that** SCIM requests can be authenticated without configuring additional secrets. \[enter desired result\]
**Acceptance criteria**
* JSON Web Tokens issued to another client can be processed
* Instead of authenticating an OpenProject user they should authenticate \[something else\]
* TBD: Authenticate a SCIM-Client? Authenticate something that's associated to a SCIM-Client?
<br>
**Technical notes**
* It probably makes sense to understand <br>
**Permissions and think about the general concepts involved in authentication visibility considerations**
* _To whom is this feature visible?_
* Should something inherit from Principal or _When is the Principal too close to a User? it not visible?_
**Out of scope**
* <br>
**I want to** be able to accept JWTs issued in a client credentials flow,
**so that** SCIM requests can be authenticated without configuring additional secrets.
**Acceptance criteria**
* JSON Web Tokens issued to another client can be processed
* Instead of authenticating an OpenProject user they should authenticate \[something else\]
* TBD: Authenticate a SCIM-Client? Authenticate something that's associated to a SCIM-Client?
* It probably makes sense to understand
**Permissions
* _To whom is this feature visible?_
* Should something inherit from Principal or
**Out of scope**
* <br>