Release Release v1.21.0 - OAuth 2.0 + PKCE for CLI Authentication · opena2a-org/agent-identity-management

v1.21.0
c059427
Choose a tag to compare

Filter

View all tags

Release v1.21.0 - OAuth 2.0 + PKCE for CLI Authentication

v1.21.0
c059427
Choose a tag to compare

Filter

View all tags

thebenignhacker tagged this 03 Feb 18:47

- **CLI Authentication**: Replaced password prompt with OAuth 2.0 + PKCE browser flow
  - `aim-sdk login` now opens browser for secure authentication (Google, etc.)
  - Uses PKCE (Proof Key for Code Exchange) per RFC 8252 - same as AWS CLI
  - No more password prompts or browser permission dialogs
  - Browser redirects directly to localhost - seamless experience

- PKCE prevents authorization code interception attacks
- State parameter prevents CSRF attacks
- Authorization codes are one-time use with 5-minute TTL

```bash
pip install --upgrade aim-sdk
aim-sdk login
```

Assets 2

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

Choose a tag to compare

Sorry, something went wrong.

Sorry, something went wrong.

Uh oh!

No results found

Uh oh!