syncope-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "ASF subversion and git services (JIRA)" <j...@apache.org>
Subject [jira] [Commented] (SYNCOPE-1270) OpenID Connect client feature
Date Thu, 10 May 2018 07:44:03 GMT

    [ https://issues.apache.org/jira/browse/SYNCOPE-1270?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=16470018#comment-16470018
] 

ASF subversion and git services commented on SYNCOPE-1270:
----------------------------------------------------------

Commit c0a3d367da4774d00c474b5cb7813f5c58414db3 in syncope's branch refs/heads/2_0_X from
[~dimaayash]
[ https://git-wip-us.apache.org/repos/asf?p=syncope.git;h=c0a3d36 ]

[SYNCOPE-1270] OpenID Connect Logout implementation


> OpenID Connect client feature
> -----------------------------
>
>                 Key: SYNCOPE-1270
>                 URL: https://issues.apache.org/jira/browse/SYNCOPE-1270
>             Project: Syncope
>          Issue Type: New Feature
>          Components: extensions
>            Reporter: Dima Ayash
>            Assignee: Francesco Chicchiriccò
>            Priority: Major
>             Fix For: 2.0.9, 2.1.0
>
>
> This feature implements an SSO access to the Enduser UI and Admin Console by using [OpenID
Connect 1.0|http://openid.net/connect/] which is a simple identity layer on top of the OAuth
2.0 protocol. It allows Clients to verify the identity of the End-User based on the authentication
performed by an Authorization Server, as well as to obtain basic profile information about
the End-User in an interoperable and REST-like manner.
> The flow for this feature will be possibly as follow (using Google as an example of OpenID
Connect Provider):
> # From Enduser or Admin login UI, the user can choose to be authenticated using Google
account.
> #  Check if the user has a valid session, otherwise prompts the user to login by redirecting
him to the Google Login UI.
> #  After the user login successfully to his Google account, grant him an access to Enduser
UI or Admin console.
> This will be achieved by following the OpenId Connect required flow, leveraging possibly
from CXF features.



--
This message was sent by Atlassian JIRA
(v7.6.3#76005)

Mime
View raw message