Authentication via OIDC

learningtapestry / metadataregistry

DEPRECATED - THIS CODE BASE IS NO LONGER MAINTAINED. Metadata Registry

Apache License 2.0

7 stars 5 forks source link

Authentication via OIDC #7

Open aspino opened 8 years ago

aspino commented 8 years ago

[ ] Perform authentication by using one of the following providers: Google, Microsoft or Amazon

science commented 8 years ago

Purpose is to enable users to have the LR server sign envelopes on their behalf.

We should maintain private keys for each provider+user identity.

science commented 8 years ago

Users should be authorized to publish by community

science commented 8 years ago

When users are authorized to publish, they should be given an API key that permits access to /publish rather than making the API authn via OIDC itself. The approval process requires OIDC. The API will require an API key.

science commented 7 years ago

This feature was implemented by aspino for LR 1.0 community. We should borrow design and/or code from that.