QuickFHIR Authorizer: JWT authorizer

Allow all requests to the API endpoint that include a valid JSON Web Token. JWT is supplied in the http Authorization header as a Bearer token. Configure a JSON Web Key Set containing public keys that can used to verify a JWT (https://tools.ietf.org/html/rfc7517) and a list of acceptable iss and aud claims.

Configurability

Device configuration

{
  "$schema": "https://json-schema.org/draft/2019-09/schema",
  "type": "object",
  "properties": {
    "keys": {
      "description": "JSON Web Key Set containing public keys that can be used to verify a JWT (https://tools.ietf.org/html/rfc7517)",
      "type": "array",
      "items": {
        "oneOf": [
          {
            "type": "object",
            "properties": {
              "kty": {
                "type": "string",
                "enum": [
                  "oct"
                ]
              },
              "kid": {
                "type": "string"
              },
              "k": {
                "type": "string"
              }
            },
            "required": [
              "kty",
              "kid",
              "k"
            ]
          },
          {
            "type": "object",
            "properties": {
              "kty": {
                "type": "string",
                "enum": [
                  "RSA"
                ]
              },
              "kid": {
                "type": "string"
              },
              "e": {
                "type": "string"
              },
              "n": {
                "type": "string"
              },
              "use": {
                "type": "string",
                "enum": [
                  "sig"
                ]
              }
            },
            "required": [
              "kty",
              "kid",
              "e",
              "n",
              "use"
            ]
          }
        ]
      },
      "minItems": 0
    },
    "check": {
      "description": "Set of acceptable values for claims",
      "type": "object",
      "properties": {
        "iss": {
          "description": "Acceptable 'iss' values",
          "type": "array",
          "items": {
            "type": "string"
          }
        },
        "aud": {
          "description": "Acceptable 'aud' values",
          "type": "array",
          "items": {
            "type": "string"
          }
        }
      }
    }
  },
  "required": [
    "keys"
  ]
}

Technical information

Property Value
Model @blackpear.quickfhir-authorizer-jwt
Available Versions 1.0.3, 1.0.5
Manufacturer Black Pear Software Limited