Policy Designer - Trusted Issuer Management

Trusted Issuer

In jans-cedarling provides token validation. Token validation allows Cedarling to check the validity of the tokens supplied by request with configured issuer. To enable this, you need to register your Trusted Issuer (IDP) using issuer management feature. Jans-Cedarling will also use this configuration to map tokens with Cedar entities that are used during Cedar authorization.

You can see your list of Trusted Issuers, and there are Actions in this section.

Click on Add Issuer to add a new issuer. The token’s metadata is important to map tokens with the Cedar entities.

Multi-issuer Configuration

It is simple to configure multiple issuers. You just need to add a new trusted issuer and Jans as a base schema. When you add it, Agama-Lab adds a new namespace in the schema with the same name as a new Trusted issuer name, and you are good to configure policies for Jans Cedarling.

Note: If you have only one trusted issuer, it will be good to keep the issuer name Jans to keep it simple and keep your policies simple. If you add another name, then Agama Lab will add a new namespace, and while writing policies, you need to use your newly added namespace.

As per the above example, it will add the following namespace and schema. Check Cedarling docs for More details.