Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Consider supporting OAuth 2.0 Dynamic Client Registration #3144

Open
benfrancis opened this issue Jul 25, 2024 · 1 comment
Open

Consider supporting OAuth 2.0 Dynamic Client Registration #3144

benfrancis opened this issue Jul 25, 2024 · 1 comment
Labels
oauth OAuth implementation and support
Milestone

Comments

@benfrancis
Copy link
Member

Currently the gateway has to maintain a hard-coded list of client IDs to identify third party apps and services which can request access to a gateway via OAuth2. This means that if a new service wants to access gateways we have to manually issue a client ID, add it to this list, and push an update to all gateways.

The IndieAuth specification defines a mechanism which enables authorization servers (i.e. gateways in our case) to dynamically use resolveable URLs hosted by an OAuth2 client (third party apps and services) as verifiable client IDs, rather than having to manually issue them.

Note that IndieAuth is a Living Standard maintained by the IndieWeb community, not a standards body like the W3C or IETF, and was primarily used to obtain an OAuth 2.0 Bearer Tokens for use by [Micropub] clients, so may not be widely supported.

@benfrancis benfrancis added the oauth OAuth implementation and support label Jul 25, 2024
@benfrancis benfrancis added this to the 2.0 milestone Jul 25, 2024
@benfrancis benfrancis moved this to Product Backlog in WebThings Gateway Jul 25, 2024
@benfrancis
Copy link
Member Author

See also: RFC 7591 (OAuth 2.0 Dynamic Client Registration Protocol)

@benfrancis benfrancis changed the title Consider implementing IndieAuth Consider supporting OAuth 2.0 Dynamic Client Registration Aug 4, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
oauth OAuth implementation and support
Projects
Status: Product Backlog
Development

No branches or pull requests

1 participant