Ability to create a account and then Post-Account creation, add additional oAuth providers that you can login with.
[ ] LinkedIn
[ ] Facebook
[ ] Google
[ ] Twitter
[ ] Office365
[ ] Do not support Auto-mapping of email address from oAuth Provider with email address in DS User Account: as a security mitigation risk. If a user wants to log in with a 2nd oAuth provider they have to add that provider once they are logged in with their original provider or the core DS authentication. If they try to log in with a second provider that the user has not explicitly added, the user will be taken to the new account creation page.
As a genreal rule: "we cannot trust that the 'valid'/'confirmed email address from a oauth provider has not been compromised in the provider". The user must always explicitly add their additional login providers.
[ ] Support for a Admin interface that allows admins to configure which providers are allowed.
StephenOTT
commented
7 years ago
Ability to create a account and then Post-Account creation, add additional oAuth providers that you can login with.
As a genreal rule: "we cannot trust that the 'valid'/'confirmed email address from a oauth provider has not been compromised in the provider". The user must always explicitly add their additional login providers.