Open namedgraph opened 3 years ago
Support is now implemented in oauth.google.AuthorizeGoogle
, oauth2.Login
resources and the IDTokenFilter
.
Requires GOOGLE_CLIENT_ID
and GOOGLE_CLIENT_SECRET
environmental variables in docker-compose.yml
.
It can be accessed using the [Login with Google]
button in the top right (next to [Sign up]
).
Needs more testing still, and probably a security evaluation. state
parameter is currently not being validated:
https://github.com/AtomGraph/LinkedDataHub/blob/master/src/main/java/com/atomgraph/linkeddatahub/resource/oauth2/Login.java#L147
It should have a possibility of logout, too.
The JWT token is also currently not verified in oauth2.Login
.
Implement OpenID Connect as an alternative authentication method to WebID, starting with support for Google.