-
Notifications
You must be signed in to change notification settings - Fork 444
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
feat: device authorization RFC 8628 #5646
Conversation
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
Codecov Report
@@ Coverage Diff @@
## main #5646 +/- ##
========================================
Coverage 48.42% 48.42%
========================================
Files 693 699 +6
Lines 72237 72734 +497
========================================
+ Hits 34981 35222 +241
- Misses 35620 35857 +237
- Partials 1636 1655 +19
... and 4 files with indirect coverage changes Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here. |
I'm mostly done, this still needs to be clarified (already posted in chat):
I will also create a follow-up issue for console changes. |
Enforcement of the grant type is now implemented: zitadel/internal/api/oidc/device_auth.go Lines 83 to 92 in 7aa22b9
|
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
reviewed code
🎉 This PR is included in version 2.24.0-ignore-me2.1 🎉 The release is available on GitHub release Your semantic-release bot 📦🚀 |
This adds support for RFC 8628, device authorization grant. The flow is build to work on top of the current login (Go UI):
a. It receives a User Code and URL that are printed to the user. (Also a complete link is sent)
b. The device keeps polling the token endpoint until the device authorization grant is completed (Allowed, Denied or Exipired)
Definition of Ready