HomeSoftware Heritage
Diffusion Web applications d4446bcac766

auth/backends: Simplify and improve OIDC authentication
d4446bcac766
Actions

Description

auth/backends: Simplify and improve OIDC authentication

No need to query the userinfo endpoint of the OIDC server when authenticating
as those information can also be found in the decoded access token.

Use more reliable access token expiration date.

Check groups claim is provided in decoded token before trying to read it.

Details

Provenance
anlambertAuthored on Mar 24 2020, 10:07 PM
anlambertPushed on Mar 27 2020, 12:27 PM
Differential Revision
D2876: auth/backends: Simplify and improve OIDC authentication
Parents
rDWAPPS97c4e2438eea: tests: Specify status when calling origin_visit_update
Branches
Unknown
Tags
Unknown
Build Status
Buildable 11415
Build 17284: Cypress tests for swh-web commitsJenkins
Build 17283: test-and-buildJenkins

Changes (5)

PathSize
swh/
web/
auth/
tests/
auth/

rDWAPPSd4446bcac766

View Options

swh/web/auth/backends.py

Loading...
View Options

swh/web/auth/models.py

Loading...
View Options

swh/web/auth/views.py

Loading...
View Options

swh/web/tests/auth/keycloak_mock.py

Loading...
View Options

swh/web/tests/auth/test_backends.py

Loading...
About · Developer information · Legal