OrchardCore
OrchardCore copied to clipboard
[Prototype] Update the OpenID module to use the OpenIddict client
This is a very crude PR that replaces the MSFT OIDC handler in OrchardCore.OpenId
by the OpenIddict client. I deliberately didn't touch the OpenID client recipe to avoid a source/binary breaking change and used multiple mappings to avoid behavior changes.
Open questions:
- Do we want to support configuring multiple client registrations (to connect with multiple OpenID Connect servers)? It's not something currently supported by the OpenID client feature and would likely require changes to the UI/recipes.
- Do we want to use
OpenIddict
's web providers? If so, how do we architecture things? Do we want to merge the Facebook/Google/GitHub/Entra ID/Twitter modules intoOrchardCore.OpenId
?
Related discussion: https://github.com/OrchardCoreContrib/OrchardCoreContrib.Modules/issues/90.
/cc @hishamco @MichaelPetrinolis
So this depends on https://github.com/OrchardCMS/OrchardCore/pull/7891, right?
So this depends on https://github.com/OrchardCMS/OrchardCore/pull/7891, right?
Technically, we could use the same X.509 certificates generation logic as the server feature but since it's something we want to get rid of once the secrets module is ready, it's likely better to just wait so yeah 😃
OK then, thank you. I think it's better as a draft, then, for now.
This pull request has merge conflicts. Please resolve those before requesting a review.
This pull request has merge conflicts. Please resolve those before requesting a review.
It seems that this pull request didn't really move for quite a while. Is this something you'd like to revisit any time soon or should we close? Please comment if you'd like to pick it up.
Rebased on top of main
.
This pull request has merge conflicts. Please resolve those before requesting a review.
This pull request has merge conflicts. Please resolve those before requesting a review.