Uploaded image for project: 'Qt'
  1. Qt
  2. QTBUG-124334

[OAuth OIDC] Qt OAuth2 for OpenIDConnect id_token acquisition

    XMLWordPrintable

Details

    Description

      OpenIDConnect (OIDC) is a flow used for authenticating users. This is distinct from authorization; the goal of authorization is to give a permission to do something, where as with authentication the goal is to identify the user reliably.

      OIDC is a light layer on top of OAuth2 flows. As such, qtneworkauth module doesn't provide out-of-the-box support for OpenID Connect flow. But since it's a light layer on top of OAuth, OIDC flows can be implemented with reasonable effort.

      The scope of this task is to make it easier to acquire the id_token. This task does not include validating the token (signature verification, and if encrypted, decryption) or other OIDC concepts such as endpoint discovery or userinfo endpoint usage. The received id_token can be used as an opaque token similar to access token, and also since the id_token (JWT) is a JSON object, reading the it's fields should be easy.

      Attachments

        Issue Links

          clones

          Bug - A problem which impairs or prevents the functions of the product. QTBUG-124333 [OAuth] Ability to open and close the loopback HTTP server on a need-basis

          • P1: Critical - Urgent and Important, will STOP the release if matched with set FixVersion field. This includes regressions from the last version that are not edge cases; Data loss; Build issues; All but the most unlikely crashes/lockups/hanging; Serious usability issues and embarrassing bugs & Bugs critical to a deliverable. This is the highest possible priority for requirements.
          • Closed
          is cloned by

          Task - A task that needs to be done. QTBUG-124335 [OAuth OIDC] Add JWT support

          • P2: Important - Urgent, should be fixed, but will not stop the release.
          • Closed

          Task - A task that needs to be done. QTBUG-127845 [OAuth OIDC][Placeholder] Support for base OIDC features

          • P2: Important - Urgent, should be fixed, but will not stop the release.
          • Closed
          No reviews matched the request. Check your Options in the drop-down menu of this sections header.

          Activity

            People

              vuokko Juha Vuolle
              vuokko Juha Vuolle
              Vladimir Minenko Vladimir Minenko
              Alex Blasche Alex Blasche
              Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

                Created:
                Updated:
                Resolved:

                Gerrit Reviews

                  There are no open Gerrit changes