Page History
When connecting to a CMIS system, you may need to use JWT tokens for authentication purposes. You may also need to react on tokens that are send by the CMIS system. This article describes the steps that you need to do as technical engineer to make this possible.
Step-by-step guide
...
- cmis.objectTypeId, this value will be used for CMIS operations when the objectType parameter is not specified in a Blueriq Studio CMIS service
...
- cmis.authProvider.class
...
- when set will be used instead of basic authentication (cmis.user, cmis.password)
...
- a Json Web Token authentication provider is included with the Java version of Blueriq. Read <link to Implementation guide> if you want to create your own authentication provider
Json Web Token authentication provider
...
Code Block |
---|
<JAVA_HOME>\bin\keytool -list -keystore test_keystore.jks Enter keystore password: Keystore type: JKS Keystore provider: SUN Your keystore contains 2 entries blueriq_test_only_cert, 12-nov-2015, trustedCertEntry, Certificate fingerprint (SHA1): EA:1A:31:BB:6C:A5:70:B0:A8:CB:BA:18:CA:AD:D4:6A:D1:0A:50:99 blueriq_test, 11-nov-2015, PrivateKeyEntry, Certificate fingerprint (SHA1): 55:BD:8F:4A:97:B4:76:FB:02:D6:6B:50:AC:D7:94:13:86:FC:91:4B |
...
JWT example
...
Code Block |
---|
Header: { "x5t": "Vb2PSpe0dvsC1mtQrNeUE4b8kUs", "alg": "RS256" } Payload: { "iss": "Blueriq", "aud": "IBM Filenet", "sub": "CMIS", "idp": "active directory", "nbf": 1450537298, "exp": 1450540898, "iat": 1450537298, "identity": "ms.van.tilburg@company.com" } |
...
JWT properties
To use the JWT authentication provider set 'cmis.authProvider.class' to 'com.aquima.plugin.cmis.impl.jwt.JwtAuthenticationProvider'. The claims to put in the JWT should be configured in 'cmis.properties'. All property names that start with 'cmis.authProvider.jwt.claims.' are interpreted as claims with fixed values. For example 'cmis.authProvider.jwt.claims.idp=digid' will add a claim named 'idp' with the value 'digid'.
...
Overview
Content Tools