Content
View differences
Updated by Jan Sandbrink about 1 year ago
**As** an administrator
**I want to** be able to accept JWTs issued in a client credentials flow,
**so that** SCIM requests can be authenticated without configuring additional secrets.
**Acceptance criteria**
* JSON Web Tokens issued to another client can be processed
* Instead of authenticating an OpenProject user they should authenticate a service account \[something else\]
* The service account is TBD: Authenticate a SCIM-Client? Authenticate something that's associated to a SCIM-Client SCIM-Client?
**Technical notes**
* It probably makes sense to understand and think about the general concepts involved in authentication
* The service account should probably Should something inherit from principal Principal or is the Principal too close to a User?
**I want to** be able to accept JWTs issued in a client credentials flow,
**so that** SCIM requests can be authenticated without configuring additional secrets.
**Acceptance criteria**
* JSON Web Tokens issued to another client can be processed
* Instead of authenticating an OpenProject user they should authenticate a service account
* The service account is
**Technical notes**
* It probably makes sense to understand and think about the general concepts involved in authentication
* The service account should probably