Add OpenID Connect #192

New Issue

Open

opened 2024-05-20 11:43:48 +00:00 by raucao · 0 comments

raucao commented 2024-05-20 11:43:48 +00:00

Owner

Copy Link

In order for apps and services to be able to authenticate users and authorize client access via (public) HTTP, the best protocol to choose seems to be OpenID Connect.

@thisismissem has proposed this feature and suggested that Doorkeeper would be the easiest way of adding it. There's a Doorkeeper extension for OIDC, which is used by GitLab and Siemens apparently, so I would expect it to be safe.

In order for apps and services to be able to authenticate users and authorize client access via (public) HTTP, the best protocol to choose seems to be [OpenID Connect](https://openid.net/developers/how-connect-works/). [@thisismissem](https://github.com/thisismissem) has proposed this feature and suggested that [Doorkeeper](https://github.com/doorkeeper-gem/doorkeeper) would be the easiest way of adding it. There's a Doorkeeper [extension for OIDC](https://github.com/doorkeeper-gem/doorkeeper-openid_connect), which is used by GitLab and Siemens apparently, so I would expect it to be safe.

raucao added the

security

feature

labels 2024-05-20 11:43:48 +00:00

raucao changed title from Support OpenID Connect to Add OpenID Connect 2024-05-20 11:44:10 +00:00

Sign in to join this conversation.

No Branch/Tag Specified

Branches Tags

master

live

chore/btcpay_expired_paid-late

feature/nostr-onboarding-ruby

feature/nostr-onboarding

feature/import_deno_modules

docs/integrations

feature/ldap_aci

feature/contribution_nav

v0.10.0

v0.9.0

v0.8.1

v0.8.0

v0.7.0

v0.6.0

v0.5.0

v0.4.0

v0.3.0

v0.2.1

v0.2.0

v0.1.0

Labels

Clear labels

integration

btcpay

integration

discourse

integration

ejabberd

integration

email

integration

ldap

integration

lndhub

integration

mastodon

integration

nostr

integration

remotestorage

bug

Something is not working

design

Graphic/visual design

dev environment

Config, builds, CI, deployment, etc.

docs

Documentation

duplicate

This issue or pull request already exists

enhancement

Improving existing functionality

feature

New functionality

good first issue

Dive in, and start contributing

idea

Something to consider

invalid

Not a bug

kredits-1

Small contribution

kredits-2

Medium contribution

kredits-3

Large contribution

on hold

Currently not actionable

ops

Manual IT ops activities

question

Looking for an answer

release

major

release

minor

release

patch

security

All your base are belong to us

ui/ux

User interface, process design, etc.

wontfix

This won't be fixed

No Label

feature

security

Milestone

No items

No Milestone

Assignees

Clear assignees

bkero bumi fsmanuel galfert greg hueso raucao slvrbckt

No Assignees

1 Participants

Notifications

Subscribe

Due Date

No due date set.

Dependencies

No dependencies set.

Reference: kosmos/akkounts#192

No description provided.