Created
March 25, 2018 04:52
-
-
Save Algogator/24e81144d180645792b626dbdf9f5a88 to your computer and use it in GitHub Desktop.
FAS Auth
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Authentication (OpenID Connect) with Ipsilon: | |
Authorization code flow | |
1. Get client ID | |
- Register fedora happiness packets with Ipsilon (file an infrastructure ticket) | |
- Register scopes: Name and email (file an infrastructure ticket) | |
- Dynamic client registration https://github.com/puiterwijk/oidc-register (I don't think dynamic client registration is supported right now) | |
2. POST to authorization endpoint (https://id.fedoraproject.org/openidc/Authorization) | |
- Provide Client ID, scope(name and email), redirect URL(https://fedorahappinesspackets.io/cb) | |
3. Grab secret code at the Redirect URL | |
4. Get ID and access token at token endpoint (https://id.fedoraproject.org/openidc/Token) | |
- Provide secret code and redirect URL | |
References: | |
https://connect2id.com/learn/openid-connect | |
https://fedoraproject.org/wiki/Infrastructure/Authentication | |
https://iddev.fedorainfracloud.org/ |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment