This repository has been archived by the owner. It is now read-only.

Dynamic Client Registration Support for OpenID Connect #2021

Closed
iiAuth opened this Issue Oct 13, 2015 · 5 comments

Comments

Projects
None yet
2 participants
@iiAuth
Copy link

iiAuth commented Oct 13, 2015

Is there planned support for Dynamic Client Registration for OpenID Connect for Identity Server 3 or Microsoft OWIN OAuth/OpenID Connect middleware implementation?

Is there possibility to extend Identity Server 3 to support this?

@leastprivilege

This comment has been minimized.

Copy link
Member

leastprivilege commented Oct 13, 2015

We don't have plans to implement client registration in our core project. The design of core is that it has read-only access to the configuration store (also for minimizing attack surface).

We discussed this before and decided that this would be better implemented in a management library. This does not exist yet and we don't have the resources right now. If you want to start a contrib project - let us know.

@iiAuth

This comment has been minimized.

Copy link

iiAuth commented Oct 13, 2015

Yes, I would like to do that.

@leastprivilege

This comment has been minimized.

Copy link
Member

leastprivilege commented Oct 15, 2015

that would mean to re-start this repo https://github.com/IdentityServer/IdentityServer3.Admin

open an issue there please that you want to do this. thanks!

@iiAuth

This comment has been minimized.

Copy link

iiAuth commented Oct 22, 2015

Hi Dominick,

I am very happy that I can be part of this. I also need this functionality for one project.

Why can not we put Dynamic Client Registration as an extension to Identity Server 3? Anyway its part of both OAuth and OpenID Connect. Speaking about attack surface, it seams to me that it does not mater much where it is, if this endpoint is enabled the attack surface is the same. It can be part of Identity Server 3, and turned of by default.

Its just small proposal. What do you think Dominick?

@leastprivilege

This comment has been minimized.

Copy link
Member

leastprivilege commented Oct 22, 2015

We don't have plans to add client registration into core right now.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.