Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement OAuth2 Flow for signing in #5

Open
4 of 8 tasks
alexanderson1993 opened this issue Nov 5, 2021 · 0 comments
Open
4 of 8 tasks

Implement OAuth2 Flow for signing in #5

alexanderson1993 opened this issue Nov 5, 2021 · 0 comments
Assignees
@alexanderson1993

Comments

@alexanderson1993
Copy link
Member

alexanderson1993 commented Nov 5, 2021
edited
Loading

There should be at least two flows supported:

  • OAuth for native apps for when the user is signing in directly from the Thorium Nova app. This is doable because we can implement an app URL scheme and use that as the redirect URL for the app in question.
  • OAuth for devices for when the user is signing in with a browser connected to a separate server. We can't use a regular browser or SPA flow because there is no way for us to know what the redirect URL should be, and dynamic redirect URLs are a security risk.

Tasks for Native Apps

  • Implement a URL schema for the app
  • Implement authorization API
  • Implement auth page.
  • Implement access token API.

Tasks for Devices

  • Device Code Request
  • Webpage to enter the device code
  • Client polling of authorization server
  • Rate limiting for the auth server
@alexanderson1993 alexanderson1993 changed the title Create a Lite login page which can be embedded in a pop-up window for logging in to Thorium Nova. Implement OAuth2 Flow for signing in Nov 9, 2021
@alexanderson1993 alexanderson1993 self-assigned this Nov 9, 2021
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@alexanderson1993 alexanderson1993

Labels
None yet
Projects
Thorium Nova Roadmap
Status: 🛠 In Progress
Milestone
No milestone
Development

No branches or pull requests
1 participant
@alexanderson1993