openid
openid copied to clipboard
kilork
OpenID Connect Rust Library
This would allow adding caching, otel etc without needing more changes to the openid crate. One pattern I quite like is to define a trait that specifies only what you...
I noticed that the `validate_token` function does validate an id token. On the backend, shouldn't there be a way to validate access tokens?
Hi, I've been using openid [in my project](https://github.com/Isixhosa-click/isixhosa_click) for a while now (code for it is [here](https://github.com/IsiXhosa-click/isixhosa_click/blob/master/src/auth.rs)) - thanks for the effort you've put into it! I have however run...
Seems like documentation tells it is JHipster, but it is actually just one index.html app to get account details.
The jwks list doesn't appear to provide any mechanism for periodic refreshing or rediscovery for missing keys. OIDC providers may rotate keys at any time so they should be periodically...
PKCE
I'd like to add support for PKCE, specifically: 1. Allow passing optional `code_challenge` to `auth_url`. 2. Allow passing optional `code_verifier` to `request_token`. (1) is not a strictly necessary change, as...
Hi, Thanks for this library. I wonder what the best way to solve an issue I have with validating the issuer. Microsoft OIDC uses `{tenantId}` in the issuer URL returned...
Hi I am trying to use the issuer 'https://login.microsoftonline.com/common/v2.0' which serves all Microsoft accounts, regardless of their tenant. Now it seems that `openid` sees a tenant mismatch, because Microsoft will...
