ghys
commented
3 years ago Example:
Native dialog from VS Code:
The sign in page is opened in a browser tab:
When clicking sign in the browser may ask if VS Code should open the link:
The extension catches the callback, gets the authorization code from it, and exchanges it for a refresh token and access token:
The protected API calls now work, no manual token creation necessary:
The client ID & refresh token are stored as secrets and they can be retrieved later, so no need to repeat this procedure afterwards.
The VS Code sessions appear in the user's profile page in main UI and can be revoked from there:
Confectrician
This is an early implementation of the VS Code Authentication Provider API which is able to open regular sessions in the openHAB instance by authorizing itself with the OAuth2 flow, similarly to the main UI.
When an API request fails, a "Sign in" button is offered to perform the initial authorization flow (opening a browser to allow the user to sign in and open a session), the refresh token is then stored in the secrets storage (new secrets API), and reused to get additional access tokens to access the API on behalf of the user.
It doesn't support yet:
Signed-off-by: Yannick Schaus github@schaus.net