Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

client.register() has no easy way to pass in an Initial Access Token #432

Closed
schlenk opened this issue Oct 13, 2017 · 0 comments
Closed

client.register() has no easy way to pass in an Initial Access Token #432

schlenk opened this issue Oct 13, 2017 · 0 comments
Assignees
@tpazderka
Labels
enhancement newcomer-friendly
Milestone
0.14.0

Comments

@schlenk
Copy link
Collaborator

schlenk commented Oct 13, 2017

If a OP has dynamic client registration open, but requires an Initial Access Token to access the registration endpoint, this is currently not possible via client.register().

This can happen if the OP follows the spec:
https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration

The OpenID Provider MAY require an Initial Access Token that is provisioned out-of-band (in a manner that is out of scope for this specification) to restrict registration requests to only authorized Clients or developers.

One can hack around it with a custom requests auth class:

client.request_args['auth'] = HTTPBearerAuth(registration_token)
registration_info = client.register(registration_endpoint, **args)
del client.request_args['auth']

This feels a bit dirty. The register() API should take some auth information via a kwarg directly.
@decentral1se decentral1se added this to the P2: SHOULD milestone Oct 16, 2017
@tpazderka tpazderka self-assigned this Apr 19, 2018
@tpazderka tpazderka modified the milestones: P2: SHOULD, 0.14.0 Apr 19, 2018
tpazderka added a commit that referenced this issue Apr 19, 2018
@tpazderka
Add registration_token kwarg to Client.register
a9ceda1 
Close #432
@tpazderka tpazderka mentioned this issue Apr 19, 2018
Merged
2 tasks
tpazderka added a commit that referenced this issue Apr 19, 2018
@tpazderka
Add registration_token kwarg to Client.register
ffe2c0b 
Close #432
tpazderka added a commit that referenced this issue Apr 19, 2018
@tpazderka
Add registration_token kwarg to Client.register
8780660 
Close #432
tpazderka added a commit that referenced this issue Apr 19, 2018
@tpazderka
Add registration_token kwarg to Client.register
7377a7a 
Close #432
andrewkrug pushed a commit to mozilla-iam/pyoidc that referenced this issue Jun 6, 2019
@tpazderka @andrewkrug
Add registration_token kwarg to Client.register
d74daef 
Close CZ-NIC#432
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@tpazderka tpazderka

Labels
enhancement newcomer-friendly
Projects
None yet
Milestone
0.14.0
Development

No branches or pull requests
3 participants
@schlenk @decentral1se @tpazderka