Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Identity server v2 API authentication #2603

Closed
manuroe opened this issue Jul 25, 2019 · 2 comments
Closed

Identity server v2 API authentication #2603

manuroe opened this issue Jul 25, 2019 · 2 comments
Assignees
Labels
A-Identity-Server feature P1 privacy privacy-sprint T-Enhancement New features, changes in functionality, performance boosts, user-facing improvements

Comments

@manuroe
Copy link
Member

manuroe commented Jul 25, 2019

From riot-web created by jryans: element-hq/element-web#10408

MSC2140 defines a new v2 API for Identity Servers and uses OpenID authentication as defined in MSC1961.

We need to add support for the new API version and authentication requirement in all places that IS APIs are used.

@jryans
Copy link
Contributor

jryans commented Aug 15, 2019

An additional detail here (discussed in element-hq/element-web#10525 (comment)) is the client should send is_token to the HS for any requests proxied through it to the IS.

@jryans
Copy link
Contributor

jryans commented Aug 30, 2019

This was later changed to id_access_token.

@kittykat kittykat added the T-Enhancement New features, changes in functionality, performance boosts, user-facing improvements label Apr 6, 2022
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
A-Identity-Server feature P1 privacy privacy-sprint T-Enhancement New features, changes in functionality, performance boosts, user-facing improvements
Projects
None yet
Development

No branches or pull requests

4 participants