Skip to content

fermyon/poc-cat-validator

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

11 Commits
.vscode
.vscode
 
 
src
src
 
 
.gitignore
.gitignore
 
 
Cargo.lock
Cargo.lock
 
 
Cargo.toml
Cargo.toml
 
 
README.md
README.md
 
 
spin.toml
spin.toml
 
 

Repository files navigation

Common Access Token Validator [POC]

This repository contains a simple PoC to demonstrate common access token (CAT) validation. Although this implementation validates certain claims according to the CAT Specification (CAT-5007-B), it's not implementing all aspects of the specification.

This implementation is not meant to be used in a production environment.

Custom additions

The validator defines a set of block lists, which could be used to invalidate tokens based on individual requirements. Custom blocklist are checked once token integrity has been confirmed and the "default" token validation has passed.

The following block lists are supported:

  • Country
  • User-Agent
  • Subject
  • CIDR

API endpoints for managing block lists are not protected, as we considered authentication and authorization out of scope for this PoC.

Supported Claims

CAT validation checks the following claims:

  • iss
  • aud
  • exp
  • nbf
  • catu
  • catm
  • cath
  • catv
  • catgetoiso3166
  • catnip (Excluding ASN)

About

No description, website, or topics provided.

Resources

Readme

Security policy

Security policy
Activity
Custom properties

Stars

0 stars

Watchers

0 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages