[OIDC] Dynamic Client Registration (DCR) #3499
Description
WHAT Needs to be Documented?
- Dynamic Client Registration (DCR) support in ownCloud clients
- https://openid.net/specs/openid-connect-registration-1_0.html
- independent from server implementation (OpenID Connect 2.0.0 openidconnect#104 (comment))
- depends on
registration_endpointin/.well-known/openid-configuration - ownCloud web: Add dynamic client registration web#4286
- iOS: [FEATURE REQUEST] OIDC Dynamic Client Registration support ios-app#865 (11.5+)
- Android: [FEATURE REQUEST] OIDC Dynamic Client Registration support android#3054 (2.17+)
- Desktop: dynamic oidc registration client#8350 (future 2.9+ release, can be tested with daily builds: ownCloud, testpilotcloud)
- Keycloak example config: [deployment examples] Keycloak: allow dynamic client registration from any host ocis#1835
- Sadly not working with Kopano: OIDC Dynamic Client Registration expiry hinders OIDC token refresh openidconnect#142
UPDATE 22.05.17 by MM: this is no longer true, fixed on the Kopano side a year ago, see comment: OIDC Dynamic Client Registration expiry hinders OIDC token refresh openidconnect#142 (comment) - Demo for testing and public accessible Keycloak UI for screenshots: https://owncloud.dev/ocis/deployment/continuous_deployment/#ocis-with-keycloak
WHERE Does This Need To Be Documented (Link)?
https://doc.owncloud.com/server/admin_manual/configuration/user/oidc/oidc.html
WHY Should This Change Be Made?
ownCloud clients learned Dynamic Client Registration (DCR). If IdP's support it, it makes admin life easier, because they don't need to add client ID & secret to their IdP configuration.
(Optional) What Type Of Content Change Is This?
- New Content Addition
- Old Content Deprecation
- Existing Content Simplification
- Bug Fix to Existing Content
(Optional) Which Manual Does This Relate To?
- Admin Manual
- Developer Manual
- User Manual
- Android
- iOS
- Branded Clients
- Desktop Client
- Other