-
Notifications
You must be signed in to change notification settings - Fork 0
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
GSGGR-156 Add OIDC authentication flow for the geoshop frontend #21
Conversation
bee3e15
to
cde43ae
Compare
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
It is fine to me to implement OIDC-Connect with a "native" Angular library (angular-auth-oidc-client).
I guess the client configuration will be in another place?
checkOidcToken(token: string): Observable<{ identity: Partial<IIdentity>; callbackUrl: string; }> { | ||
this._getApiUrl(); | ||
|
||
const url = new URL(`${this.apiUrl}/oidc/token`); |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Why not directly create a string?
const url = new URL(`${this.apiUrl}/oidc/token`); | |
const url = `${this.apiUrl}/oidc/token`; |
* Update Dockerfile * retrieve docker-compose file from other branch * wip on docker-compose file * local init script * Example docker-composition * Remove dotenv * Envvar for ADMIN_USERNAME * chore: setup docker compose dev environment * chore: improve fixtures generation to be compatible with initialized DBs * chore: missing import gettext_lazy import * chore(Dockerfile): remove /mnt/geoshop_data directory creation --------- Co-authored-by: Andrea Borghi <[email protected]>
This pull request adds initializes an open-id authentication for the geoshop-frontend, but to make it fully working there should be an update on the geoshop-backend side. Here is the frontend flow:
If no OIDC provider is configured, OIDC authentication is disabled (see screenshots).