Authenticate against the integration server - Githubissues

18F / identity-oidc-expressjs

An example Login.gov client application which authenticates users via OpenID Connect (OIDC). Built with Node.js, Express.js, and Passport.js.

Other

12 stars 7 forks source link

Authenticate against the integration server #2

Closed s2t2 closed 6 years ago

s2t2 commented 6 years ago

As described in the README, this application should allow the user to additionally/alternatively authenticate against the integration server (https://idp.int.login.gov/).

The application should check the value of an environment variable called LOGIN_GOV_DISCOVERY_URL and use that value during discovery.

Right now this application's credentials are waiting to be merged and deployed to the integration server, but it should be possible to develop this feature in the meantime using the example Sinatra application's credentials.

s2t2 commented 6 years ago

sinatra_demo.crt:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

sinatra_demo.key:

-----BEGIN RSA PRIVATE KEY-----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-----END RSA PRIVATE KEY-----