[
https://issues.apache.org/jira/browse/CXF-5607?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=14202267#comment-14202267
]
Sergey Beryozkin commented on CXF-5607:
---------------------------------------
Initial RP specific utility code for validating OIDC id_tokens and extracting
UserProfile has been added, new module name is cxf-rt-rs-security-sso-oidc.
Some utiliity code for OIDC IDPs will be introduced later: effectively a
CXF-based OIDC IDP is an instance of CXF AuthorizationCodeGrantService or
ImplicitGrantService.
OIDC RP code will require some more enhancements too.
> Support for CXF OAuth2 endpoints participating in OpenId-Connect flows
> ----------------------------------------------------------------------
>
> Key: CXF-5607
> URL: https://issues.apache.org/jira/browse/CXF-5607
> Project: CXF
> Issue Type: New Feature
> Components: JAX-RS, JAX-RS Security
> Reporter: Sergey Beryozkin
> Assignee: Sergey Beryozkin
> Fix For: 3.1.0, 3.0.3
>
>
> CXF OAuth2 endpoints and services should be able to work with the users
> authenticating via OpenId-Connect.
> The actual OpenId-Connect server can be implemented in Fediz or other 3rd
> party providers
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)
