JWT extras (#817)

* JWT extras: check issues, expiration, namespace and tenant * idents
2025-12-18 02:21:13 +00:00 · 2020-08-06 08:44:19 -07:00
parent 4596aaf5d5
commit 4c275513b4
2 changed files with 81 additions and 24 deletions
--- a/packages/cli/config/index.ts
+++ b/packages/cli/config/index.ts
@@ -333,13 +333,43 @@ const config = convict({
 				env: 'N8N_JWT_AUTH_HEADER',
 				doc: 'The request header containing a signed JWT'
 			},
+			jwtHeaderValuePrefix: {
+				format: String,
+				default: '',
+				env: 'N8N_JWT_AUTH_HEADER_VALUE_PREFIX',
+				doc: 'The request header value prefix to strip (optional)'
+			},
 			jwksUri: {
 				format: String,
 				default: '',
 				env: 'N8N_JWKS_URI',
-				doc: 'The URI to fetch JWK Set for JWT auh'
+				doc: 'The URI to fetch JWK Set for JWT authentication'
 			},
-		}
+			jwtIssuer: {
+				format: String,
+				default: '',
+				env: 'N8N_JWT_ISSUER',
+				doc: 'JWT issuer to expect (optional)'
+			},
+			jwtNamespace: {
+				format: String,
+				default: '',
+				env: 'N8N_JWT_NAMESPACE',
+				doc: 'JWT namespace to expect (optional)'
+			},
+			jwtAllowedTenantKey: {
+				format: String,
+				default: '',
+				env: 'N8N_JWT_ALLOWED_TENANT_KEY',
+				doc: 'JWT tenant key name to inspect within JWT namespace (optional)'
+			},
+			jwtAllowedTenant: {
+				format: String,
+				default: '',
+				env: 'N8N_JWT_ALLOWED_TENANT',
+				doc: 'JWT tenant to allow (optional)'
+			},
+		},
 	},

 	endpoints: {