Checker should be able to check the systemType value on an integrated token
Summary
Tokens coming from a 3rd party system (authenticated via Public Key) have a value in the integration
column. This value helps identifying the specific system and can be used to build a permission set that rule API access.
Current Behavior
At the moment, there is no way to automatically check an integrated token against a given system type.
Desired Behavior
The Checker should provide a method to check that an integrated token is valid and comes from a given system type.
Implementation Plan
- Define an overload of
Checker::checkerForToken()
which takes the token and the desired system type (as string). - In this method, check the token validity and if it's valid, compare the given system type with the one in the
integration
column. - Return the comparison result
Migration Plan
This improvement does not break backward compatibility.
Benefits
The Access Control system should be able to identify 3rd party apps via their integration
column.