Hello Community,
I need some ideas to solve an issue related to the use of the ISAM STS to transform the iv_cred into JWT.
The chain is quite simple:
-iv_cred validate module
-javascript map module to add some user information into the jwt
-Default jwt module to issue the jwt
The chain receives a bearer token for the authentication.
Some applications need the use of the method HTTP OPTIONS (unauthenticated) et the configuration to achieve this is in place.
Also the sts.ivcred.unauthenticated.user.name is configured to let the STS in validate mode work even with an unauthenticated request.
The problem is that before the use of unathenticated HTTP OPTIONS and sts.ivcred.unauthenticated.user.name, if the bearer token was not valid or empty the chain will result in an HTTP 500 error and now if the bearer token is invalid or empty a jwt token is generated with the value of the sts.ivcred.unauthenticated.user.name.
How can we restore the HTTP 500 error in case of unauthenticated requests to the chain and maintain the unauthenticated OPTIONS method?
Without the sts.ivcred.unauthenticated.user.name the STS chain in validate mode when receives unauthenticated requests got an error.
Thank you
------------------------------
Natascia Roia
------------------------------