Skip to content

Make the id_token optional on upstream OAuth 2.0 providers #3591

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Nov 29, 2024
Merged

Make the id_token optional on upstream OAuth 2.0 providers #3591

merged 1 commit into from
Nov 29, 2024

Conversation

@sandhose
Copy link
Member

This makes it possible to use non-OIDC providers as upstream OAuth 2.0 providers, like GitHub.

Helps with #2080

@sandhose
Make the id_token optional on upstream OAuth 2.0 providers
f8d2823 
This makes it possible to use non-OIDC providers as upstream OAuth 2.0 providers, like GitHub.
@cloudflare-workers-and-pages
Copy link

cloudflare-workers-and-pages bot commented Nov 27, 2024
edited
Loading

Deploying matrix-authentication-service-docs with  Cloudflare Pages  Cloudflare Pages

Latest commit: f8d2823
Status: ✅  Deploy successful!
Preview URL: https://ef0f8a47.matrix-authentication-service-docs.pages.dev
Branch Preview URL: https://quenting-upstream-oauth-id-t.matrix-authentication-service-docs.pages.dev

View logs

sandhose
sandhose commented Nov 28, 2024
View reviewed changes
crates/oidc-client/src/requests/token.rs
let token_request = http_client.post(token_endpoint.as_str());
let token_request = http_client
.post(token_endpoint.as_str())
.header(ACCEPT, APPLICATION_JSON.as_ref());
Copy link
Member Author

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

GitHub will return us a URL-encoded form if we don't do this. OAuth 2.0 expects to always return application/json, but also for the relying party to ask for it.

@sandhose sandhose merged commit 2c01b43 into main Nov 29, 2024
19 checks passed
@sandhose sandhose deleted the quenting/upstream-oauth/id-token-optional branch November 29, 2024 09:31
@sandhose sandhose added the A-Upstream-OAuth Related to login via upstream OAuth 2.0 providers label Nov 29, 2024
@sandhose sandhose mentioned this pull request Nov 29, 2024
Closed
@sandhose sandhose changed the title Make the id_token optional on upstream OAuth 2.0 providers Make the id_token optional on upstream OAuth 2.0 providers Dec 16, 2024
@sandhose sandhose added the T-Enhancement New feature of request label Dec 16, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

A-Upstream-OAuth Related to login via upstream OAuth 2.0 providers T-Enhancement New feature of request

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@sandhose