Uploaded image for project: 'OpenId Connect'
  1. OpenId Connect
  2. OIDC-22

Allow accessing any resource using access token

    XMLWordPrintable

Details

    • New Feature
    • Resolution: Fixed
    • Major
    • 1.15
    • 1.1
    • Provider
    • None

    Description

      The idea is to provide a OIDC provider side authenticator that check if the request contains an access token to automatically authenticate the corresponding user. If none can be found fallback on a configured authenticator.

      This would allow external applications to access REST resource with an access token instead of user/password for example which is a lot safer.

      Attachments

        Issue Links

          depends on

          Improvement - An improvement or enhancement to an existing feature or task. OIDC-25 Improve security of access token storage

          • Major - Major loss of function.
          • Closed

          Improvement - An improvement or enhancement to an existing feature or task. OIDC-41 Salt the stored token

          • Major - Major loss of function.
          • Closed

          Activity

            People

              tmortagne Thomas Mortagne
              tmortagne Thomas Mortagne
              Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved: