Replies: 1 comment 4 replies
-
|
I don't think such "IP-initiated revocation" is supported for granted tokens. This will not be a priority, including specifically for all the work related to OAuth 2, OIDC, and so on, for the foreseeable future. |
Beta Was this translation helpful? Give feedback.
-
|
For management UI access, this may end up being a relatively small amount of work, depending on how common such feature/callback is for various identity providers. For established client connections, this is significantly more involved, and is basically the same fundamental design challenge/set of trade-offs as in #8293. |
Beta Was this translation helpful? Give feedback.
-
|
My specific use case is just the UI, as its exposed. My other connections are behind the proxy so don't post much of a risk |
Beta Was this translation helpful? Give feedback.
-
|
For completeness, here is the specification https://openid.net/specs/openid-connect-backchannel-1_0.html#BCRegistration |
Beta Was this translation helpful? Give feedback.
-
|
Hi @poweriton , we are going to support front-channel logout. Back-channel logout does not make sense in RabbitMQ as all the user's state is maintained solely in the browser. |
Beta Was this translation helpful? Give feedback.
Uh oh!
There was an error while loading. Please reload this page.
-
Describe the bug
I am configuring the oauth2 management addon to authenticate users based on keycloak in this instance. I wanted to implement a backchannel/front channel logout but I can't find any information on the endpoints to use.
Reproduction steps
Expected behavior
Additional context
No response
Beta Was this translation helpful? Give feedback.
All reactions