Single Sign-On (Identity Provider) #15
Labels
Type: Feature Request
New feature or request
Milestone
Comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Story
As a user, I want my login request to be validated by an SSO backend.
Description
Create and implement the following API endpoints:
/ssofor creating and signing SSO JWTs when supplied correct username and password information. It will be supplied with an email, password, and redirect URL./authfor verifying SSO JWTs and creating and signing corresponding identity JWTs. It will be supplied with an SSO JWT and a redirect URL./identityfor verifying and decoding identity JWTs. It will be supplied with an identity JWT.Acceptance Criteria
/ssoreturns a 401 if supplied with an invalid username/password pair/ssoreturns an authorization cookie containing a signed SSO JWT if supplied with a valid username/password pair/authreturns a redirect to platform.utdnebula.com/signin if not supplied with a valid SSO JWT/authreturns a redirect to the supplied URL, with an identity JWT as a query parameter, if supplied with a valid SSO JWT./identityreturns a 401 if it is not supplied with a valid identity JWT./identityreturns the payload of a supplied valid identity JWT./ssoand/authsign their JWTs with unique secrets.Notes
This article describes a possible implementation.
The text was updated successfully, but these errors were encountered: