[WIP] OIDC: Login #11093

kerryarchibald · 2023-06-15T01:56:15Z

For element-hq/element-web#25657
With matrix-org/matrix-js-sdk#3499
With matrix-org/matrix-js-sdk#3531

Screen.Recording.2023-06-23.at.15.54.49.mov

3.1.1. Authorization Code Flow Steps

1. Client prepares an Authentication Request containing the desired request parameters.
2. Client sends the request to the Authorization Server.
3. Authorization Server Authenticates the End-User.
4. Authorization Server obtains End-User Consent/Authorization.
5. Authorization Server sends the End-User back to the Client with an Authorization Code.
6. Client requests a response using the Authorization Code at the Token Endpoint.
7. Client receives a response that contains an ID Token and Access Token in the response body.
8. Client validates the ID token and retrieves the End-User's Subject Identifier.

Checklist

Tests written for new code (and old code if feasible)
Linter and other CI checks pass
Sign-off given on the changes (see CONTRIBUTING.md)

Here's what your changelog entry will look like:

✨ Features

[WIP] OIDC: Login (#11093). Contributed by @kerryarchibald.

…ion-2

…rry/25468/oidc-client-registration

…gistration

…ion-2

…rry/25468/oidc-client-registration

…dc-client-registration

Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>

…-authorization

…authorization

kerryarchibald · 2023-07-07T03:57:11Z

Replaced by matrix-org/matrix-js-sdk#3554

Kerry Archibald added 29 commits June 7, 2023 17:23

add delegatedauthentication to validated server config

c2a78d1

dynamic client registration functions

f946b85

Merge branch 'develop' into kerry/25466/oidc-validate-wk-mauthenticat…

223d3ff

…ion-2

Merge branch 'kerry/25466/oidc-validate-wk-mauthentication-2' into ke…

f83499e

…rry/25468/oidc-client-registration

test OP registration functions

4201725

add stubbed nativeOidc flow setup in Login

314105d

cover more error cases in Login

6fe2d35

Merge branch 'kerry/25468/test-login' into kerry/25468/oidc-client-re…

c473f11

…gistration

tidy

19dc425

test dynamic client registration in Login

94d5c36

comment oidc_static_clients

67f6c2e

register oidc inside Login.getFlows

8df0929

Merge branch 'develop' into kerry/25466/oidc-validate-wk-mauthenticat…

0d4de13

…ion-2

strict fixes

1a53ad0

remove unused code

f9aaa28

and imports

9faa9c8

Merge branch 'kerry/25466/oidc-validate-wk-mauthentication-2' into ke…

0f76ffa

…rry/25468/oidc-client-registration

Merge branch 'develop' into kerry/25468/oidc-client-registration

4dfa18d

comments

e920229

comments 2

5389d5c

util functions to get static client id

af63a90

check static client ids in login flow

9c89f41

Merge branch 'kerry/25468/oidc-client-static-reg' into kerry/25468/oi…

056a713

…dc-client-registration

remove dead code

422823e

Merge branch 'kerry/25468/oidc-client-static-reg' into kerry/25468/oi…

8483b2f

…dc-client-registration

OidcRegistrationClientMetadata type

a76cde9

navigate to oidc authorize url

bf45be2

Merge branch 'develop' into kerry/25468/oidc-client-static-reg

e1e22f3

Merge branch 'kerry/25468/oidc-client-static-reg' into kerry/25468/oi…

f4a2ff2

…dc-client-registration

github-actions bot deployed to Netlify June 15, 2023 02:01 View deployment

i18n

b9792bc

github-actions bot deployed to Netlify June 28, 2023 06:26 View deployment

Kerry Archibald and others added 3 commits June 29, 2023 08:44

tidy

a9ed791

Update src/Lifecycle.ts

71f1633

Co-authored-by: Richard van der Hoff <1389908+richvdh@users.noreply.github.com>

Merge branch 'develop' into kerry/25574/token-login-refactor

c920e45

Base automatically changed from kerry/25574/oidc-authorization-endpoint to develop June 28, 2023 21:52

Kerry added 3 commits June 29, 2023 13:28

Merge branch 'develop' into kerry/25574/token-login-refactor

fdfaa01

Merge branch 'develop' into kerry/25574/oidc-authorization

3602b65

Merge branch 'kerry/25574/token-login-refactor' into kerry/25574/oidc…

5fddb23

…-authorization

kerryarchibald changed the base branch from develop to kerry/25574/token-login-refactor June 29, 2023 02:15

Kerry Archibald added 2 commits June 29, 2023 14:16

tidy

11a6ccc

Merge branch 'kerry/25574/token-login-refactor' into kerry/25574/oidc…

5a2aaad

…-authorization

github-actions bot requested a deployment to Netlify June 29, 2023 02:24 In progress

comment

a7d4e44

github-actions bot requested a deployment to Netlify June 29, 2023 02:29 In progress

Kerry Archibald added 2 commits June 30, 2023 09:56

update tests for id token validation

e389fde

move try again responsibility

cb8832c

Base automatically changed from kerry/25574/token-login-refactor to develop June 29, 2023 22:57

Kerry Archibald added 3 commits June 30, 2023 12:08

Merge branch 'kerry/25574/token-login-refactor' into kerry/25574/oidc…

9dccd7a

…-authorization

Merge branch 'develop' into kerry/25574/oidc-authorization

6ae1965

prettier

ccadb29

github-actions bot deployed to Netlify July 3, 2023 06:05 View deployment

Kerry Archibald added 3 commits July 3, 2023 18:35

use more future proof config for static clients

2afdaf4

Merge branch 'develop' into kerry/oidc-static-client-config

b02e525

Merge branch 'kerry/oidc-static-client-config' into kerry/25574/oidc-…

6cbe9a1

…authorization

github-actions bot deployed to Netlify July 4, 2023 02:07 View deployment

Merge branch 'develop' into kerry/25574/oidc-authorization

516800a

github-actions bot deployed to Netlify July 5, 2023 10:04 View deployment

kerryarchibald closed this Jul 7, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[WIP] OIDC: Login #11093

[WIP] OIDC: Login #11093

kerryarchibald commented Jun 15, 2023 •

edited by github-actions bot

Loading

kerryarchibald commented Jul 7, 2023

[WIP] OIDC: Login #11093

[WIP] OIDC: Login #11093

Conversation

kerryarchibald commented Jun 15, 2023 • edited by github-actions bot Loading

Checklist

✨ Features

kerryarchibald commented Jul 7, 2023

kerryarchibald commented Jun 15, 2023 •

edited by github-actions bot

Loading