Closed bobmcwhirter closed 5 days ago
To my understanding we might be able to use https://github.com/HeroicKatora/oxide-auth … kind of like SQlite for OIDC.
Can we close this?
I think the Authentication part is solved. The authorization part is there, but leaves a lot of room for improvement. That could be tracked in a more focused issued though.
Tracking issue for authorization: https://github.com/trustification/trustify/issues/554
What's needed for authentication?
Do we need a KeyCloak? Can we defer (for dev at least?) to GH OAuth or similar?