OIDC: Store OIDC client settings during session #25710

kerryarchibald · 2023-07-04T02:48:50Z

To revoke tokens from authentication server we need:

to know that the user has authenticated via OIDC
oidc client id, as dynamically registered during login or from static config
metadata information from the OIDC issuer, we can get this via discovery

AC:

revocation endpoint and clientId are available at point of logout (in MatrixChat)
we can determine if a user was logged in via OIDC native flow

kerryarchibald mentioned this issue Jul 4, 2023

OIDC: Log out #25394

Closed

kerryarchibald added T-Enhancement A-Authentication Z-Labs labels Jul 4, 2023

kerryarchibald self-assigned this Jul 4, 2023

kerryarchibald added A-OIDC A-Login and removed Z-Labs labels Jul 4, 2023

This was referenced Jul 4, 2023

OIDC: add revocationEndpoint to ValidatedIssuerConfig matrix-org/matrix-js-sdk#3539

Closed

OIDC: Update tests for revocation endpoint matrix-org/matrix-react-sdk#11183

Closed

kerryarchibald changed the title ~~OIDC: Get the revocation end point from issuer wk~~ OIDC: Store OIDC client settings during session Jul 20, 2023

kerryarchibald mentioned this issue Jul 20, 2023

OIDC: Persist details in session storage, create store matrix-org/matrix-react-sdk#11302

Merged

3 tasks

kerryarchibald closed this as completed in matrix-org/matrix-react-sdk#11302 Jul 20, 2023

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

OIDC: Store OIDC client settings during session #25710

OIDC: Store OIDC client settings during session #25710

kerryarchibald commented Jul 4, 2023 •

edited

Loading

OIDC: Store OIDC client settings during session #25710

OIDC: Store OIDC client settings during session #25710

Comments

kerryarchibald commented Jul 4, 2023 • edited Loading

kerryarchibald commented Jul 4, 2023 •

edited

Loading