simplesamlphp-module-oidc
simplesamlphp-module-oidc copied to clipboard
simplesamlphp
A SimpleSAMLphp module for OIDC OP support.
According https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.3.1.2.1 ui_locales are end-User's preferred languages and scripts for the user interface This parameter is ignored and does not imply any warning or error.
The parameter login_hint is ignored. This not cause any error in conformance tests. Read more: https://openid.net/specs/openid-connect-core-1_0.html#ThirdPartyInitiatedLogin
According https://openid.net/specs/openid-connect-core-1_0.html#rfc.section.3.1.2.1 id_token_hint is a ID Token previously issued by the Authorization Server being passed as a hint about the End-User's current or past authenticated session with the Client. This...
```php $stmt = sprintf( "UPDATE %s SET is_revoked = 1 WHERE auth_code_id = :auth_code_id", $this->getTableName(), ); ``` the SQL from above will not work for PostgreSQL since the boolean value...
Hello, I'm seeing [this](https://github.com/simplesamlphp/simplesamlphp-module-oidc/issues/45) issue that appears to have been fixed in 2021 in the latest version. I get this error when adding a new client on `simplesaml/module.php/oidc/admin-clients/new.php` ``` SimpleSAML\Error\Error:...
In the authorization code flow, custom claims can be sent either in the "id_token" or by querying the "userinfo". If the client made a preference as to where the claims...
https://openid.net/specs/openid-connect-core-1_0.html#RequestObject We currently do not support 'Request Object' functionality and mark it as not supported in OP config metadata ('request_parameter_supported' = false). However, this functionality is mandatory in order to...
In the codebase we have OAuth2 Implicit Grant (src/Server/Grants/OAuth2ImplicitGrant.php), which is triggered by 'response_type' = 'token' param request on authorization endpoint. This is not OIDC standard flow and there is...