Skip to content

Jans Lock Overview#

Lock Server is a Java Weld application that connects ephemeral Cedarlings to the enterprise by providing a number of endpoints

Installation#

Admins can deploy Lock Server as part of Jans Auth Server or as a stanalone web server.

Configuration#

A list of server-level configuration properties.

Logs#

Lock Server creates the following logs:

  • lock_server_config.log
  • lock_server_audit.log -- RDBMS option
  • lock_server_jwt_status.log

CLI / TUI#

Admins can manage Lock Server runtime configuration and see activity using the Jans CLI or TUI.

  • Create/Read/Update/Delete Policy Stores
  • Total Number of Authz requests per day
  • View/Search current Cedarling clients by searching for username
    • View authz activity for this Cedarling client

OAuth Security#

Cedarling should present an SSA during client registration. This will enable Cedarlings to obtain access tokens with scopes for OAuth protected Lock Server endpoints.


Last update: 2024-11-11
Created: 2024-07-02