br4in1 opened a new issue #15081: URL: https://github.com/apache/superset/issues/15081
Hello, I have an in-house-implemented Authorization server in NodeJS and I would like to use it to authenticate users to Superset. By reading the documentation, the only way to secure the authorization code flow is by using a **client_secret**. In my case, I would like to use the [Proof Key for Code Exchange](https://oauth.net/2/pkce/) mechanism. It is also important to mention that Authlib, the library that Superset uses to do OAuth, implements **PKCE** out of the box. May anyone guide me through the process of intergrating it to Superset ? Any help will be appreciated. Thank you. -- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: [email protected] --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
