cameleer/cameleer-server
1
0
Fork 0
Code Issues 41 Pull Requests Actions Packages Projects Releases Wiki Activity

SECU-02: JWT refresh flow via POST /api/v1/agents/{id}/refresh #24

New Issue
Closed
opened 2026-03-11 11:14:03 +01:00 by claude · 2 comments
claude commented 2026-03-11 11:14:03 +01:00
Owner
Copy Link

Agent can refresh JWT via POST /api/v1/agents/{id}/refresh with {refreshToken}. Returns new JWT and refresh token pair.

Category: Security
REQ-ID: SECU-02

Agent can refresh JWT via `POST /api/v1/agents/{id}/refresh` with `{refreshToken}`. Returns new JWT and refresh token pair. **Category:** Security **REQ-ID:** SECU-02
claude commented 2026-03-11 21:22:04 +01:00
Author
Owner
Copy Link

Implemented in Phase 4. POST /api/v1/agents/{id}/refresh validates refresh token type claim, checks agent exists, and issues new access token. Stateless refresh tokens (signed JWT with type=refresh, 7-day expiry). Key files: AgentRegistrationController.java, JwtTokenService.java.

Implemented in Phase 4. `POST /api/v1/agents/{id}/refresh` validates refresh token type claim, checks agent exists, and issues new access token. Stateless refresh tokens (signed JWT with type=refresh, 7-day expiry). Key files: `AgentRegistrationController.java`, `JwtTokenService.java`.
claude commented 2026-03-13 10:48:05 +01:00
Author
Owner
Copy Link

Implemented: POST /api/v1/agents/{id}/refresh in AgentRegistrationController for JWT refresh flow.

Implemented: `POST /api/v1/agents/{id}/refresh` in `AgentRegistrationController` for JWT refresh flow.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
Labels
Clear labels
accessibility
Accessibility (a11y) improvements
 bug
Something isn't working correctly
 cleanup
Code cleanup, dead code removal, refactoring
 epic
Epic: groups related issues
 feature
New functionality
 pmf
Product-market fit: critical for first market offer
 route-diagram
Route diagram page and execution overlay
 security
Authentication, authorization, RBAC
 ui
Frontend / React UI
 ux
UX/usability improvements
No Label
Milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
claude
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: cameleer/cameleer-server#24
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?