Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

OIDC: Store OIDC client settings during session #25710

Closed
Tracked by #25394
kerryarchibald opened this issue Jul 4, 2023 · 0 comments · Fixed by matrix-org/matrix-react-sdk#11302
Closed
Tracked by #25394

OIDC: Store OIDC client settings during session #25710

kerryarchibald opened this issue Jul 4, 2023 · 0 comments · Fixed by matrix-org/matrix-react-sdk#11302

Comments

@kerryarchibald
Copy link
Contributor

kerryarchibald commented Jul 4, 2023

To revoke tokens from authentication server we need:

  • to know that the user has authenticated via OIDC
  • oidc client id, as dynamically registered during login or from static config
  • metadata information from the OIDC issuer, we can get this via discovery

AC:

  • revocation endpoint and clientId are available at point of logout (in MatrixChat)
  • we can determine if a user was logged in via OIDC native flow
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Projects
None yet
Development

Successfully merging a pull request may close this issue.

1 participant