IBX-8482: Fixed lack of JWT stateless calls recognition

ibexa · Jul 1, 2024 · 179a5ae · 179a5ae
1 parent aa3a512
commit 179a5ae
Show file tree

Hide file tree

Showing 4 changed files with 36 additions and 8 deletions.
diff --git a/ibexa/commerce/5.0/config/packages/security.yaml b/ibexa/commerce/5.0/config/packages/security.yaml
@@ -89,17 +89,24 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
         #        password_path: JWTInput.password
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa

diff --git a/ibexa/experience/5.0/config/packages/security.yaml b/ibexa/experience/5.0/config/packages/security.yaml
@@ -77,17 +77,24 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
         #        password_path: JWTInput.password
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa

diff --git a/ibexa/headless/5.0/config/packages/security.yaml b/ibexa/headless/5.0/config/packages/security.yaml
@@ -77,17 +77,24 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
         #        password_path: JWTInput.password
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa

diff --git a/ibexa/oss/5.0/config/packages/security.yaml b/ibexa/oss/5.0/config/packages/security.yaml
@@ -55,17 +55,24 @@ security:
 
         # Uncomment the rules below to enable JSON Web Token (JWT) authentication for REST and/or GraphQL
         #ibexa_jwt_rest:
-        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
-        #    provider: ibexa
+        #    request_matcher: Ibexa\Rest\Security\JWTTokenCreationRESTRequestMatcher
         #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
         #    stateless: true
+        #    provider: ibexa
         #    json_login:
         #        check_path: ibexa.rest.create_token
         #        username_path: JWTInput.username
         #        password_path: JWTInput.password
         #        success_handler: lexik_jwt_authentication.handler.authentication_success
         #        failure_handler: lexik_jwt_authentication.handler.authentication_failure
 
+        #ibexa_jwt_rest.api:
+        #    request_matcher: Ibexa\Rest\Security\AuthorizationHeaderRESTRequestMatcher
+        #    user_checker: Ibexa\Core\MVC\Symfony\Security\UserChecker
+        #    provider: ibexa
+        #    stateless: true
+        #    jwt: ~
+
         #ibexa_jwt_graphql:
         #    request_matcher: Ibexa\GraphQL\Security\NonAdminGraphQLRequestMatcher
         #    provider: ibexa