Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Do you have a roadmap? #19

Open
leroy0211 opened this issue Jun 27, 2018 · 7 comments
Open

Do you have a roadmap? #19

leroy0211 opened this issue Jun 27, 2018 · 7 comments
Labels
enhancement question

Comments

@leroy0211
Copy link

Do you have a roadmap for this implementation?

For example:

  • implement the /.well-known/openid-configuration handler
  • implement a token-introspection handler
  • ...
@steverhoades
Copy link
Owner

The short answer is there is no roadmap for new features at the moment. This library does exactly what I need it to do. I've purposely kept it as simple as possible.

If there are missing features you would like to see please let me know about them!

@leroy0211
Copy link
Author

leroy0211 commented Jul 5, 2018
edited
Loading

Aah, I see you only implemented the OIDC core RFC. If that is your only goal, then I'm all OK with that.

I wanted to have the OIDC Discovery and Dynamic Registration too in my setup.

@steverhoades
Copy link
Owner

@leroy0211 Sorry for taking awhile to respond to this. I'll take a more in-depth look at these. I do believe these features would be great additions to this library. Thanks!

@stadja
Copy link

stadja commented Jun 7, 2019
edited
Loading

Hello :)
I wanted to know if there were plans to add the /token/introspection and the /userinfo endpoint ?

Explaination:
https://connect2id.com/products/server/docs/api/token-introspection
https://connect2id.com/products/server/docs/api/userinfo

Anyway,
loved your work, thank you very much :)

@ralfbecker
Copy link

ralfbecker commented Jun 9, 2019
edited
Loading

I can second that it would be a good enhancement.
I had to implement it on top of open-id-connect using one pull request from the underlaying League OAuth2 server, when I implemented OpenID Connect for EGroupware.
I'm happy to prepare both a pull request, if I know it will be merged.

Ralf

@steverhoades
Copy link
Owner

@stadja @ralfbecker I would definitely be interested in any improvements to this library you would be willing to contribute. My time is very limited at the moment but as soon as I can i'll review the token-introspection and usreinfo links provided above.

@ralfbecker
Copy link

ralfbecker commented Apr 19, 2020
edited
Loading

I added now a couple more enhancements to my OpenID Connect server for EGroupware:

  • fix League OAuth2 server to support multiple response_type(s), currently it neither splits response_type by space, nor does it send responses for more then one grant, see response in this ticket
  • support response_type "id_token" or "token id_token" containing just an id_token (JWT) or additional to access_token an id_token
  • support hyprid flow / response_type contains additional "code" to also return an auth_code
  • add additional OpenID Connect standard scopes: profile, address, phone
  • /jwks endpoint to get automatic fetch public key to validate JWToken

Ralf

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
4 participants
@stadja @ralfbecker @steverhoades @leroy0211