The Software Heritage web application should offer users to login based on the Authorization Code Flow from OpenID Connect.
Dedicated endpoints and Django authentication backend must be implemented to perform that task.
Description
Description
Revisions and Commits
Revisions and Commits
| Status | Assigned | Task | ||
|---|---|---|---|---|
| Migrated | gitlab-migration | T3082 Improve Save Code Now handling | ||
| Migrated | gitlab-migration | T1226 Save code now email notification for submitter | ||
| Migrated | gitlab-migration | T2217 Plumbings | ||
| Migrated | gitlab-migration | T2219 Authentication / authorization | ||
| Migrated | gitlab-migration | T1982 Add user authentication and permissions to swh-web | ||
| Migrated | gitlab-migration | T2048 Use OpenID Connect to authenticate and authorize users in Django | ||
| Migrated | gitlab-migration | T2245 Allow to login with OIDC Authorization Code Flow |
Event Timeline
Comment Actions
Today, the best solution seems to use the PKCE extension for the Authorization Code Flow as it enables to authenticate a user without having to store a client secret on the backend side.