Diffusion Common authentication libraries 367ead11f59f

django: Add OIDC Authorization code PKCE authentication backend
367ead11f59f
Actions

Tags

None

Subscribers

None

This commit no longer exists in the repository. It may have been part of a branch which was deleted.

Description

django: Add OIDC Authorization code PKCE authentication backend

Add a generic Django authentication backend and related login / logout
views enabling to authenticate a user using Keycloak and the OpenID
Connect authorization code flow with PKCE ("Proof Key for Code Exchange").

The backend can be easily plugged into any django application by:

adding "swh.auth.django.backends.OIDCAuthorizationCodePKCEBackend" to the AUTHENTICATION_BACKENDS django setting
configuring Keycloak by adding SWH_AUTH_SERVER_URL, SWH_AUTH_REALM_NAME and SWH_AUTH_CLIENT_ID in django settings
adding swh.auth.django.views.urlpatterns to the django application URLs
using the dedicated django views: "oidc-login" and "oidc-logout"

Related to T3150

Details

Provenance

anlambert	Authored on Mar 24 2021, 5:18 PM
anlambert	Pushed on Mar 30 2021, 5:49 PM

Differential Revision

D5365: django: Add OIDC Authorization code PKCE authentication backend

Tasks

T3150: Move generic django authentication code to swh-auth

Build Status

Buildable 20365
Build 31616: test-and-build	Jenkins console · Jenkins

Event Timeline

anlambert committed rDAUTH367ead11f59f: django: Add OIDC Authorization code PKCE authentication backend (authored by anlambert).Mar 30 2021, 5:36 PM

anlambert added a task: T3150: Move generic django authentication code to swh-auth.Mar 30 2021, 5:49 PM

anlambert added an edge: D5365: django: Add OIDC Authorization code PKCE authentication backend.

Harbormaster completed building B20365: rDAUTH367ead11f59f: django: Add OIDC Authorization code PKCE authentication backend.Mar 30 2021, 5:50 PM

Commit No Longer Exists

This commit no longer exists in the repository.