openidconnect-rs
openidconnect-rs copied to clipboard
ramosbugs
OpenID Connect Library for Rust
Check https://www.rfc-editor.org/rfc/rfc7519#section-5.1 and https://datatracker.ietf.org/doc/html/rfc7515#section-4.1.9 for more information on when the typ header should be set and to which value. This commit allows to skip the check altogether as warranted by...
Hi, What contributions or actions are needed in order to stabilize version 4.0 of this crate?
Allow unix timestamps within a string for updated_at, as follows: `"updated_at": "1713964430.299453"` This is not allowed by the specification, but was observed in the wild on at least one OpenAM...
Currently, in the [verification module](https://github.com/ramosbugs/openidconnect-rs/blob/c4e28f43bdd5faba098e92400476670ff057bf8e/src/verification/mod.rs#L205) the `typ` header field of the JOSE header of JWT is checked. However, I am not sure why exactly as I did not find any...
Currently, when discovering a Provider, both `openid-configuration` and `JWKS` [get fetched](https://github.com/ramosbugs/openidconnect-rs/blob/c4e28f43bdd5faba098e92400476670ff057bf8e/src/discovery/mod.rs#L298). I have a specific use case where I do not need the JWKs, so I propose to decouple fetching...
We are using pure implicit flow (id_token only) to request non-standard claims with standard and non-standard scope values. _EDIT_ scopes won't work for us as we need to be able...
Hi! From my understanding the only way to let my app redirect the user to the original accessed url (the one prior the oauth redirect) is to encode the path...
The README for this repo has this line as the very first you read: ``` This library provides extensible, strongly-typed interfaces for the OpenID Connect protocol, which can be used...
For anyone interested, [here's a simple demo](https://github.com/dskyberg/okta_oidc) of a resource server / client using v4.0.0-alpha.1. My goal is to just demo how to set up Okta for OIDC best practices....
