Skip to content

Asymmetric Tokens and server issuing challenges #11521

Open
Open
Asymmetric Tokens and server issuing challenges#11521
Labels
A-registry-authenticationArea: registry authentication and authorization (authn authz)S-triageStatus: This issue is waiting on initial triage.Z-asymmetric-tokenNightly: asymmetric-token authentication
@Eh2406

Description

@Eh2406
Eh2406
opened on Dec 29, 2022

The 3231 RFC describes that servers can issue a one time challenge to better protect against token reuse. This was not implemented in #10771 and should be implement it before stabilization.

Metadata

Metadata

Assignees

No one assigned

    Labels

    A-registry-authenticationArea: registry authentication and authorization (authn authz)S-triageStatus: This issue is waiting on initial triage.Z-asymmetric-tokenNightly: asymmetric-token authentication

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions