Awesome

Quorum Enterprise Security Plugin

This is to provide a backend support for geth JSON RPC servers by implementing services from security plugin interface:

• TLSConfigurationSource to provide TLS configuration for HTTP and WS RPC servers
• AuthenticationManager to enable RPC servers being OAuth2-compliant resource servers that support both JSON Web Token (JWT) and opaque access token format

Prerequisites

• Go 1.13.x

Quick Start

$ make
$ PLUGIN_DEST_PATH=<path to store plugin distribution zip file> make dist-local

Configuration

Refer to the official documentation here for more details

Token Validation

Access token is validated by one of the following methods when configured:

• JSON Web Signature: The JSON Web Key Set (JWKS) is a set of keys which contains the public keys used to verify the JSON Web Token (JWT) issued by the authorization server. JWKS is retrieved via a preconfigured endpoint.
• OAuth2 Token Introspection: support HTTP Basic Authentication and Form Authentication to access the protected introspection endpoint. Other authentication methods may be supported in the future.