Implement first (simple/PoC) version of a OIDC auth provider #6432

poikilotherm · 2019-12-04T12:49:48Z

This is part of epic #5974.

Since the refactoring of OAuth2 infrastructure in #5991 and #6364 it was made possible to introduce a new authentication mechanism using the Nimbus OAuth 2.0 SDK with OpenID Connect extensions.
(ScribeJava has a long missing feature request for OIDC support, which has never been attacked).

This first implementation should enable us:

load a configuration
retrieve metadata
login at the provider
retrieve standardized claims like email, name, ...
allow multiple providers so it can be reused for different IdPs without touching codebase

poikilotherm mentioned this issue Dec 4, 2019

As a Dataverse admin, I would like to hook up my installation to an IDM/IAM #5974

Closed

5 tasks

poikilotherm added this to In Focus in Forschungszentrum Jülich Dec 4, 2019

poikilotherm self-assigned this Dec 4, 2019

poikilotherm mentioned this issue Dec 4, 2019

OpenID Connect (OIDC) support #6433

Merged

kcondon closed this as completed in #6433 Dec 4, 2019

poikilotherm added a commit to poikilotherm/dataverse that referenced this issue Dec 9, 2019

Add release note about basic OIDC support. IQSS#6432 IQSS#5974

4779395

This was referenced Dec 9, 2019

6432 - add release note about basic OIDC support #6442

Merged

As a Dataverse Installation Administrator, I want to add an alternative OAuth provider as a plugin, so that I don't have to fork the core code #4383

Closed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Implement first (simple/PoC) version of a OIDC auth provider #6432

Implement first (simple/PoC) version of a OIDC auth provider #6432

poikilotherm commented Dec 4, 2019 •

edited

Implement first (simple/PoC) version of a OIDC auth provider #6432

Implement first (simple/PoC) version of a OIDC auth provider #6432

Comments

poikilotherm commented Dec 4, 2019 • edited

poikilotherm commented Dec 4, 2019 •

edited