Rocket.Chat
Certified OpenID Connect authentication flow #31791
Closed
CorentinDeBoisset
started this conversation in
Ideas
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
Uh oh!
There was an error while loading. Please reload this page.
-
More and more services are starting to conform to the OpenID Connect standard (Keycloak, Google, Microsoft 365, Linkedin, Gitlab or Nextcloud for instance), and the custom-made implementation in Rocketchat is not fully compliant. The maintenance of this layer feels out-of-scope for this project, maybe a well maintained and compliant library could be used instead?
See here: https://openid.net/developers/certified-openid-connect-implementations/
OIDC is based on OAuth 2.0, so the workflows should stay close to what is already existing in RocketChat. See more information here: https://openid.net/developers/how-connect-works/
If you want, I can make a proof of concept but since it affects the product features, a preliminary discussion seems adequate.
Beta Was this translation helpful? Give feedback.
All reactions