Update JWT docs (#96623)

1 year ago · d9395f2682
parent 8789e23fe2
commit d9395f2682
1 changed files with 6 additions and 1 deletions
--- a/docs/sources/setup-grafana/configure-security/configure-authentication/jwt/index.md
+++ b/docs/sources/setup-grafana/configure-security/configure-authentication/jwt/index.md
@ -23,6 +23,10 @@ This method of authentication is useful for integrating with other systems that
 use JWKS but can't directly integrate with Grafana or if you want to use pass-through
 authentication in an app embedding Grafana.

+{{% admonition type="note" %}}
+Grafana does not currently support refresh tokens.
+{{% /admonition %}}
+
 ## Enable JWT

 To use JWT authentication:
@ -183,7 +187,8 @@ key_id = my-key-id

 By default, only `"exp"`, `"nbf"` and `"iat"` claims are validated.

-You might also want to validate that other claims are really what you expect them to be.
+Consider validating that other claims match your expectations by using the `expect_claims` configuration option.
+Token claims must match exactly the values set here.

 ```ini
 # This can be seen as a required "subset" of a JWT Claims Set.