JWT authentication

[klimenttoshkov]

Hi,

I have Operaton engine running embedded in our Spring boot application.
Authentication is performed using JWT with custom keycloak authentication filter + operaton authentication filter.
Basically it simply authenticates the user with the process engine and adds his groups:

			String userId = jwtAuth.getName(); // preferred_username via your converter
			List<String> groups = jwtAuth.getAuthorities().stream()
					.map(GrantedAuthority::getAuthority)
					.toList();

			processEngine.getIdentityService().setAuthentication(userId, groups);

Given the above context which I believe is very common, could you please advise how to try the Tasklist application to talk to the engine?

[m-orlova]

Hi, @klimenttoshkov

The authentication using OIDC provider is supported in the Flowset Tasklist.
Example of configuration in the .env file:

VITE_APP_AUTH_TYPE=OIDC
VITE_OIDC_REALM_URL=http://localhost:9081/realms/your-realm #change to your value
VITE_OIDC_CLIENT_ID=your-client-id #change to your value
VITE_OIDC_REDIRECT_URI=http://localhost:3000/