jedarden/miroir
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
miroir/crates
History
jedarden ec3ecedfd7 feat(proxy): implement JWT session minting with filter injection (P5.21.c, §13.21) 
- Add injected_filter, user, and groups claims to JwtClaims
- Implement filter template rendering in oauth_proxy mode
  - Replace {groups} with JSON-encoded groups array
  - Replace {user} with user identifier
  - Bake rendered filter into JWT injected_filter claim
- Apply injected_filter in search handler
  - AND injected_filter with user-supplied filter on every search
  - Pass filter through JWT claims extension
- Add config validation: scoped_key_rotate_before_expiry_days < scoped_key_max_age_days
- Add JwtClaimsExtension to pass claims from middleware to handlers
- Update auth middleware to insert JWT claims into request extensions
- Update sign_jwt to accept new optional filter fields

Closes: miroir-uhj.21.3

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-05-24 04:58:34 -04:00
..
miroir-core feat(proxy): implement JWT session minting with filter injection (P5.21.c, §13.21) 2026-05-24 04:58:34 -04:00
miroir-ctl feat(multi-search): implement timeout enforcement and acceptance tests (§13.11) 2026-05-24 01:54:20 -04:00
miroir-proxy feat(proxy): implement JWT session minting with filter injection (P5.21.c, §13.21) 2026-05-24 04:58:34 -04:00