Samuel Gulliksson

I love the initiative! 👍 I'm running a simple Jekyll blog where I wanted to use it, and took a stab at making it "independent". With only some minor changes...

I haven't tested this with a SwaggerUI-implementation, so I don't fully understand why it works by loading it in a different tab? Is there some minimal example you could provide...

The underlying OpenID Connect library of this extension follows the [spec](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig): > OpenID Providers supporting Discovery MUST make a JSON document available at the path formed by concatenating the string...

From your config it looks like you are using static provider configuration, in which case you need to also specify the `userinfo_endpoint` to make sure the UserInfo request is made....

Sorry to hear you're still experiencing problems! Is there any error in the logs? If you configure debug level logging (`logging.basicConfig(level=logging.DEBUG, ...)`, you should see all the HTTP requests and...

Thanks for the PR! 🙇 I think it falls slightly outside the scope of flask-pyoidc - as you say it impacts the authorisation (the user may have access even after...

> Like how? I misread the API, it's not easily doable right now, so let's go with your implementation instead. I've added some review comments to address security concerns.

Fixed with #118.