search

AtomGraph / LinkedDataHub

The low-code Knowledge Graph application platform. Apache license.
https://atomgraph.github.io/LinkedDataHub/
Apache License 2.0
493 stars 124 forks source link

Verify JWT token #68

Open namedgraph opened 3 years ago

namedgraph commented 3 years ago

Implement OpenID Connect as an alternative authentication method to WebID, starting with support for Google.

namedgraph commented 3 years ago

Support is now implemented in oauth.google.AuthorizeGoogle, oauth2.Login resources and the IDTokenFilter.

Requires GOOGLE_CLIENT_ID and GOOGLE_CLIENT_SECRET environmental variables in docker-compose.yml.

It can be accessed using the [Login with Google] button in the top right (next to [Sign up]).

namedgraph commented 3 years ago

Needs more testing still, and probably a security evaluation. state parameter is currently not being validated: https://github.com/AtomGraph/LinkedDataHub/blob/master/src/main/java/com/atomgraph/linkeddatahub/resource/oauth2/Login.java#L147

namedgraph commented 3 years ago

It should have a possibility of logout, too.

namedgraph commented 3 years ago

The JWT token is also currently not verified in oauth2.Login.