search

qvest-digital / loginsrv

JWT login microservice with plugable backends such as OAuth2, Google, Github, htpasswd, osiam, ..
MIT License
1.92k stars 148 forks source link

OpenID Connect #126

Open rucciva opened 5 years ago

rucciva commented 5 years ago

Hi, is there any plan to include OpenID Connect as a backend?

Thanks

smancke commented 5 years ago

The OAuth Backends (e.g. the google one) are indeed doing OpenID Connect, if I got the Idea behind OpenID Connect right.

rucciva commented 5 years ago

OpenID Connect is a standard so i think it should be possible to be used with another OpenID Connect provider besides google. Most of OpenID Connect relying party that i have encountered usually need to point to the /.well-known/openid-configuration URL or directly storing the configuration. Here are an example from sonarqube.

i think by implementing the openid connect, loginsrv (and i hope caddy too) will be able to integrate with multiple OAuth2 based identity provider. the client libraries are also available, e.g. https://github.com/coreos/go-oidc

smancke commented 5 years ago

OK, would be a good idea to make a generic backend which uses the discovery document and does the configuration dynamically.