New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

[Refactor] OIDC 소셜 로그인 적용 #164

Open

3 tasks

loveysuby opened this issue Sep 22, 2024 · 0 comments

Assignees

Labels

🛠️ fix 🥵 hart ♻️ Refactor

Member

loveysuby commented Sep 22, 2024

♻️ Refactoring plans

리팩토링이 필요한 이유와 계획을 적어주세요.

서비스 내 사용되는 소셜 공급자 (Google, Apple, Kakao) 모두 OIDC protocol 적용이 가능합니다.
access token을 사용하는 Google, Kakao 로그인 로직의 경우 탈취에 의한 공격성 가입 위험이 존재합니다.
Client에 인증을 위임한 상태이므로 token verify를 수행합니다.

📝 Details

상세 체크 리스트를 작성해주세요.

Google platform OIDC 적용
Google OIDC payload 검증
Kakao OIDC payload 검증

📚 Remarks

loveysuby added ♻️ Refactor 🥵 hart 🛠️ fix labels

loveysuby self-assigned this

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment