discourse
/
discourse-openid-connect
mirror of https://github.com/discourse/discourse-openid-connect.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
47 Commits 1 Branch 0 Tags 943 KiB
Commit Graph

8 Commits

Author SHA1 Message Date
David Taylor 85abe67701
FIX: Gracefully handle errors while fetching the discovery document (#4) 
Previously an error loading the discovery document would raise an exception. Now, it will display an error to the user, and log the error for site admins to view at `/logs`. Specs are updated and improved accordingly.

This moves the discovery document fetching out of OmniAuth and into Discourse. This makes it available for the upcoming rp-initiated-logout support.
 2020-11-11 18:46:11 +00:00
David Taylor 109ec1a275
FEATURE: Add detailed OIDC request and response logs 
This makes use of Faraday middleware to log precise details about all requests made by the OAuth2 gem. This should make it easier to debug configuration issues
 2020-09-25 09:47:24 +01:00
David Taylor 9ada9528e8
FIX: Accept strings for the email_verified token 
This is technically a spec violation, but many providers do this so we should check for the string 'true'
 2020-07-10 16:49:32 +01:00
David Taylor 2ef80870d3
FIX: Do not include token scope parameter when setting is empty 2020-04-01 17:50:23 +01:00
David Taylor 84c21a572c FEATURE: Optionally allow overriding email on every login 2020-03-06 11:51:41 +00:00
David Taylor 9ad63a3fc7 FEATURE: Allow parameters to be passed from /auth/oidc to the IDP 
The most common use case is when you want the IDP to start with a specific screen (e.g. signup, rather than sign in). This change has no effect by default, you must add the parameter names to the openid_connect_authorize_parameters site setting.
 2020-01-08 14:15:32 +00:00
David Taylor 67a5595e98 FEATURE: Respect the email_verified boolean when supplied by IDP 2020-01-08 13:54:37 +00:00
David Taylor 3e83fa9c50 DEV: Refactor authenticator into its own file 2020-01-08 13:52:24 +00:00