1/ The user accesses a protected page in the front-end app
2/ The user is redirected to the OpenIdConnect Prodiver (OP)
3/ The user authenticates and agrees that his info will be shared to EasyShare
4/ The user is redirected to the front-end app with an authorization token
5/ The front-end app sends the authorization token to the backend
6/ The backend exchanges the authorization token for an access token and an id token
7/ The backend redirects the user to the front-end with a Secure Session Cookie
8/ The front-end now continues using the Session Cookie to maintain the authentication of the user to the backend
9/ The user can always logout from the application by unvaliating his session cookie
Describe alternatives you've considered
/
Additional context
Add any other context or screenshots about the feature request here.
Is your feature request related to a problem? Please describe. In order for the users to use SSO solutions, implement open id connect protocol.
Describe the solution you'd like Implement the authorization flow (code flow) and modify it to enable session cookies
https://connect2id.com/learn/openid-connect https://openid.net/specs/openid-connect-core-1_0.html#CodeFlowAuth
1/ The user accesses a protected page in the front-end app 2/ The user is redirected to the OpenIdConnect Prodiver (OP) 3/ The user authenticates and agrees that his info will be shared to EasyShare 4/ The user is redirected to the front-end app with an authorization token 5/ The front-end app sends the authorization token to the backend 6/ The backend exchanges the authorization token for an access token and an id token 7/ The backend redirects the user to the front-end with a Secure Session Cookie 8/ The front-end now continues using the Session Cookie to maintain the authentication of the user to the backend 9/ The user can always logout from the application by unvaliating his session cookie
Describe alternatives you've considered /
Additional context Add any other context or screenshots about the feature request here.