You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
okay so people will put it into a form on the hive settings website http://brrrrrt/.well-known/openid-configuration
we will fetch a JSON file from that and that will be used instead of the OAuth API Url that is now used by everything.
Things to touch:
Database Schema (Store discovery document url)
GraphQL API (store discovery document instead of oauth_api_url)
We currently use organization scoped SSO - https://the-guild.dev/graphql/hive/docs/management/sso-oidc-provider. This allows sso after sso integration was setup manually through the UI using the settings referenced at - #835. It would be great if from the initial deployment we could use SSO.
Spec: https://openid.net/specs/openid-connect-discovery-1_0.html#rfc.section.4.2
User could provide a link to the doc, pass a client id and a secret.
Why? Not all OIDC providers follow the same convention for endpoints. Azure AD has
/userinfo
under a different host.The text was updated successfully, but these errors were encountered: