Implement device authorization grant?

[arianvp]

Is your feature request related to a problem? Please describe.
I want to authenticate my smart device which has no web browser with my phone. The https://oauth.net/2/device-flow/ flow fixes this.

It's quite commonly used in IoT and smart TVs. It's also used by some cloud CLIs (like awscli) to implement single sign on

Describe the solution you'd like
Implement the https://oauth.net/2/device-flow/ flow

Describe alternatives you've considered
none

Additional context
https://oauth.net/2/device-flow/

[livio-a]

Hey @arianvp

We definitely have it on the list for our OP implementation ZITADEL (https://docs.zitadel.ch/docs/apis/openidoauth/grant-types) but forgot to list it here in the readme.

You would be more interested in the RP part, right?

[arianvp]

Actually interested in both

[livio-a]

It would certainly be a nice enhancement for ZITADEL as well, but to be honest, it's not high on the priority list right now.

Would you consider implementing one part or even both of them? 😃

[ovk]

I would be very interested in having device auth as well, as this is a hard requirement for our use-case.

[vanpelt]

💯 plus one. Good to know I'm not the only one excited about this.

[braginini]

Same here. We'd love to see this feature implemented.
The only blocker for us not to go with zitadel at https://github.com/netbirdio/netbird

P.S. Currently we are using auth0

[fforootd]

The only blocker for us not to go with zitadel at https://github.com/netbirdio/netbird

I like to hear about this 🥰

@hifabienne @livio-a let's discuss this again. Maybe it's time to solve this now. 😜

[livio-a]

I suggest that we take a look at it at one of the two meetings tomorrow.

[braginini]

FYI: We've just merged generic OIDC support in NetBird. Will be testing integration with Zitadel soon.
netbirdio/dashboard#9 (comment)

I suggest that we take a look at it at one of the two meetings tomorrow.

@livio-a did you have any progress on the device flow?

[fforootd]

@braginini love to hear this

Let me chat with @hifabienne and @livio-a on how to schedule this.
We are close to release ZITADEL v2 and afterwards some of our stuff might have time to look at this.

[braginini]

Hey guys, any progress here?

[hifabienne]

Hi @braginini

Sorry we have not yet started with this. And currently we can't tell you a specific time when this will be finished, since we still have some other features that are higher in priority.
We still think that this is something we like to implement soon.

Also PRs are highly appreciated. 😃

[mffap]

@hifabienne this seems to be the blocker for the sovereign cloud stack. Their IAM workgroup is currently evaluating ZITADEL as IAM component. Would be great, if you could take this into consideration for planning. I will get more information on 2023-01-16, if SCS would be able to contribute.

[hifabienne]

I have created a user story according to this to be able to take it into our sprint planning, please subscribe to the following issue to get the updates on the state: #264

[fforootd]

Just to raise some expectations 😁 #285

[muhlemmer]

Closing as done in #285