superset-notifications mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From GitBox <...@apache.org>
Subject [GitHub] [superset] Ceridan edited a comment on issue #15081: Use PKCE to secure the authorization code flow
Date Thu, 10 Jun 2021 14:27:48 GMT

Ceridan edited a comment on issue #15081:
URL: https://github.com/apache/superset/issues/15081#issuecomment-858597271


   You may set up PKCE by passing the `code_challange_method` in the `client_kwargs`. Here
is an example of the custom OAUTH provider setup. Be sure, that your server-side support PKCE
too.
   
   ```python
   CUSTOM_OAUTH_PROVIDER = {
       "name": "myAUTH",
       "icon": "fa-empire",
       "token_key": "access_token",
       "remote_app": {
           "client_id": os.environ["AUTH_KEY"],
           "client_secret": os.environ["AUTH_SECRET"],
           "api_base_url": "https://example.com",
           "client_kwargs": {
               "scope": "profile email",
               "code_challenge_method": "S256",
           },
           "request_token_url": None,
           "access_token_url": "https://example.com/token",
           "authorize_url": "https://example.com/authorize",
       },
   }
   ```


-- 
This is an automated message from the Apache Git Service.
To respond to the message, please log on to GitHub and use the
URL above to go to the specific comment.

For queries about this service, please contact Infrastructure at:
users@infra.apache.org



---------------------------------------------------------------------
To unsubscribe, e-mail: notifications-unsubscribe@superset.apache.org
For additional commands, e-mail: notifications-help@superset.apache.org


Mime
View raw message