Comments (6)
Sounds good!
Yes, I use a Angular4 SPA with https://github.com/IdentityModel/oidc-client-js
from doorkeeper-openid_connect.
I haven't looked into it yet, but according to this section in the spec I think it would involve supporting response_type=id_token
(Doorkeeper itself already supports implicit grants).
from doorkeeper-openid_connect.
I needed this as well and hacked it into my own branch: https://github.com/stevenvegt/doorkeeper-openid_connect/tree/implicit-flow
It works, but is probably not the perfect approach. We also need a change in doorkeeper itself since the response_type
param currently does not allow spaces and the implicit flow needs the id_token token
type.
I would like to get this into master but need some help with integrating this into the lib. Can I apply for support? :)
from doorkeeper-openid_connect.
@stevenvegt cool, thanks for looking into this! It might be a while before I find the time to wrap my head around it though :) Ping me again if you don't hear back over the next few weeks.
Also, I'm curious what your use cases are for the implicit flow, is it JavaScript SPAs or something else?
from doorkeeper-openid_connect.
This is being implemented in #45
from doorkeeper-openid_connect.
closing this since it was implemented in #45 (not all the response types are supported but we can add them later)
from doorkeeper-openid_connect.
Related Issues (20)
- Is it possible to configure and use Authentication Context Class References?
- `/.well-known/openid-configuration` crashes when `Doorkeeper.config.allow_token_introspection` is false HOT 1
- Shouldn't controllers inherit `Doorkeeper::ApplicationMetalController`? HOT 1
- Using `root_url` in `#webfinger_response` can violate specification
- `access_grant_class` is broken. HOT 7
- Possible to disable `client_secret_basic` for `token_endpoint_auth_methods_supported`?
- RP-initiated logout post_logout_redirect_uri is not validatable
- Broken with Doorkeeper v5.6.3
- uninitialized constant Doorkeeper::JWT::JWK in 1.8.4 HOT 8
- OpenID working with rails app HOT 5
- Support for sessions and session_state HOT 1
- Support multiple devise models
- `kid` value in headers in different format after upgrading from 1.8.3 to 1.8.5 HOT 2
- Missing v1.8.5 tag HOT 2
- NameError: uninitialized constant Doorkeeper::JWT::JWK HOT 6
- kid is different for different versions of doorkeeper-openid_connect HOT 1
- Certificate verify failed from SSL
- Doorkeeper patch v5.6.8 modified exception handling to require objects instead of symbols HOT 2
- some combinations of prompt causes double rendering/redirection
- Support dynamic signing_key
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from doorkeeper-openid_connect.