Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add PKCE support and also ExtraParams to plugin data #3

Merged
merged 2 commits into from Oct 27, 2022
Merged

Add PKCE support and also ExtraParams to plugin data #3

merged 2 commits into from Oct 27, 2022

Conversation

Tomin1
Copy link
Member

@Tomin1 Tomin1 commented Oct 3, 2022
edited

Add ExtraParams to plugin data. This allows sending non-standard query items to server. For example Microsoft identity platform uses this to know that it should prompt user to select account.

This also implements "pixie". It is enabled by default as there should be very little harm if the server does not support it. However, if the service is broken and may not receive code_challenge, then there is SkipPKCE property that can be set to true.

There is no support for "plain" method as the specification requires that implementations use "S256" when the device can handle sha256. Server must always support it anyway.

Code challenge is generated just like the specification recommends, constructing 32-octet sequence that is then base64url encoded.

@Tomin1
[signon-plugin-oauth2] Add ExtraParams to plugin data. JB#58703
e6d059d 
This allows sending non-standard query items to server. For example
Microsoft identity platform uses this to know that it should prompt user
to select account.

Signed-off-by: Tomi Leppänen <tomi.leppanen@jolla.com>
@Tomin1 Tomin1 changed the title [signon-plugin-oauth2] Add ExtraParams to plugin data. JB#58703 Add PKCE support and also ExtraParams to plugin data Oct 4, 2022
vigejolla
vigejolla approved these changes Oct 11, 2022
View reviewed changes
Copy link
Member

@vigejolla vigejolla left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Please check the usage of std::random_device, otherwise LGTM

@Tomin1
[signon-plugin-oauth2] Support PKCE. Fixes JB#56540
9048a89 
Signed-off-by: Tomi Leppänen <tomi.leppanen@jolla.com>
@Tomin1 Tomin1 force-pushed the jb58703_extra_fields_to_send branch from b428a80 to 9048a89 Compare October 18, 2022 09:17
@Tomin1 Tomin1 merged commit efa1955 into master Oct 27, 2022
@Tomin1 Tomin1 deleted the jb58703_extra_fields_to_send branch October 27, 2022 13:32
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@Thaodan Thaodan Thaodan left review comments

@vigejolla vigejolla vigejolla approved these changes

@rainemak rainemak Awaiting requested review from rainemak

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
3 participants
@Tomin1 @Thaodan @vigejolla