Hi all, To obtain authentication from an OpenID Connect Provider(OP), a relying party should first register itself in the OP. Then OP will give some details as client_id, client_secret, endpoints and etc. This process can be done manually or by using Dynamic Client Registration[1]. If we plan to get the details by Dynamic Client Registration then we need to implement the specification[1].
Does Apache Sling need to support any OpenID Connect Provider or specific OPs? [1] - https://openid.net/specs/openid-connect-registration-1_0.html Thank You. On Thu, May 3, 2018 at 11:46 PM, Hasini Witharana <[email protected]> wrote: > Hi Robert, > > I do not have edit access for https://cwiki.apache.org/confl > uence/display/SLING/GSOC+201 > 8+-+Provide+an+OpenID+Connect+Authentication+Handler > <https://cwiki.apache.org/confluence/display/SLING/GSOC+2018+-+Provide+an+OpenID+Connect+Authentication+Handler> > Can you please check on this matter? > > Thank you. > > On Thu, May 3, 2018 at 1:55 PM, Robert Munteanu <[email protected]> > wrote: > >> On Thu, 2018-05-03 at 13:34 +0530, Hasini Witharana wrote: >> > Hi Robert, >> > >> > My username is "hasinidilanka" for Confluence account and I have sent >> > a >> > pull request[1] for OpenID Connect Handler. >> > >> > [1] - https://github.com/apache/sling-whiteboard/pull/13 >> >> Nice :-) Bertrand already merged it, so you got your first commit >> pushed to the Sling whiteboard. >> >> I've created https://cwiki.apache.org/confluence/display/SLING/GSOC+201 >> 8+-+Provide+an+OpenID+Connect+Authentication+Handler >> <https://cwiki.apache.org/confluence/display/SLING/GSOC+2018+-+Provide+an+OpenID+Connect+Authentication+Handler> >> and granted you >> editing rights, please confirm that it works as expected. >> >> Robert >> >> > >> > Thank You. >> > >> > >> > On Wed, May 2, 2018 at 4:55 PM, Robert Munteanu <[email protected]> >> > wrote: >> > >> > > On Sun, 2018-04-29 at 01:05 +0530, Hasini Witharana wrote: >> > > > Hi Robert, >> > > > >> > > > I have done some changes to the estimated schedule and end >> > > > deliverables >> > > > sections, in the proposal[1]. Please review and give your >> > > > comments. >> > > > >> > > > [1] - >> > > > https://docs.google.com/document/d/1ki_mv_ngtMFsP2cqZkVfZfAYLAYle >> > > > 6M5S >> > > > rs0WsgHXEs/edit?usp=sharing >> > > >> > > Looks good overall. I would suggest moving the next iteration on >> > > the >> > > Apache Sling Wiki at https://cwiki.apache.org/confluence/display/SL >> > > ING/ >> > > - please send me your username and I'll grant you the necessary >> > > rights. >> > > >> > > Also for the next iteration it would be good to understand what >> > > kind of >> > > testing you had in mind ( unit tests based on Mocks, integration >> > > testing based on 'live' servers, etc ). >> > > >> > > Robert >> > > >> > > > >> > > > Thank you. >> > > > >> > > > On Fri, Apr 27, 2018 at 4:54 PM, Robert Munteanu <rombert@apache. >> > > > org> >> > > > wrote: >> > > > >> > > > > Hi Hasini, >> > > > > >> > > > > On Fri, 2018-04-27 at 00:37 +0530, Hasini Witharana wrote: >> > > > > > Hi all, >> > > > > > >> > > > > > In OpenID Connect flow there are three main parties. >> > > > > > >> > > > > > 1. End-User - Resource owner >> > > > > > 2. OpenID Connect Provider - Authorization Server that is >> > > > > > capable >> > > > > > of >> > > > > > authenticating the End-User and providing claims to a >> > > > > > Relying >> > > > > > Party about >> > > > > > the Authentication event and the End-User >> > > > > > 3. Relying Party - A client requiring End-User >> > > > > > Authentication >> > > > > > and >> > > > > > Claims >> > > > > > from an OpenID Connect Provider. >> > > > > > >> > > > > > When considering the OIDC flow, does sling act as an OpenID >> > > > > > Connect >> > > > > > provider or a relying party? >> > > > > >> > > > > >> > > > > Sling IMO should act as a relying party. >> > > > > >> > > > > Robert >> > > > > >> > > > >> > > > >> > > > >> > > >> > > >> > >> > >> >> > > > -- > *Hasini Witharana* > Undergraduate | Department of Computer Science and Engineering > University of Moratuwa > Linkedin <https://www.linkedin.com/in/hasini-witharana-185785109/> > -- *Hasini Witharana* Undergraduate | Department of Computer Science and Engineering University of Moratuwa Linkedin <https://www.linkedin.com/in/hasini-witharana-185785109/>
