oidc icon indicating copy to clipboard operation
oidc copied to clipboard

Published 20 hours ago verified publisher icon zitadel

Implement device authorization grant?

Open arianvp opened this issue 4 years ago • 10 comments
trafficstars

Is your feature request related to a problem? Please describe. I want to authenticate my smart device which has no web browser with my phone. The https://oauth.net/2/device-flow/ flow fixes this.

It's quite commonly used in IoT and smart TVs. It's also used by some cloud CLIs (like awscli) to implement single sign on

Describe the solution you'd like Implement the https://oauth.net/2/device-flow/ flow

Describe alternatives you've considered none

Additional context https://oauth.net/2/device-flow/

arianvp avatar Nov 11 '21 17:11 arianvp

Hey @arianvp

We definitely have it on the list for our OP implementation ZITADEL (https://docs.zitadel.ch/docs/apis/openidoauth/grant-types) but forgot to list it here in the readme.

You would be more interested in the RP part, right?

livio-a avatar Nov 12 '21 07:11 livio-a

Actually interested in both

arianvp avatar Nov 14 '21 10:11 arianvp

It would certainly be a nice enhancement for ZITADEL as well, but to be honest, it's not high on the priority list right now.

Would you consider implementing one part or even both of them? 😃

livio-a avatar Nov 15 '21 09:11 livio-a

I would be very interested in having device auth as well, as this is a hard requirement for our use-case.

ovk avatar Dec 03 '21 13:12 ovk

💯 plus one. Good to know I'm not the only one excited about this.

vanpelt avatar May 16 '22 20:05 vanpelt

Same here. We'd love to see this feature implemented. The only blocker for us not to go with zitadel at https://github.com/netbirdio/netbird

P.S. Currently we are using auth0

braginini avatar Jul 01 '22 21:07 braginini

The only blocker for us not to go with zitadel at https://github.com/netbirdio/netbird

I like to hear about this 🥰

@hifabienne @livio-a let's discuss this again. Maybe it's time to solve this now. 😜

fforootd avatar Jul 02 '22 13:07 fforootd

I suggest that we take a look at it at one of the two meetings tomorrow.

livio-a avatar Jul 04 '22 07:07 livio-a

FYI: We've just merged generic OIDC support in NetBird. Will be testing integration with Zitadel soon. https://github.com/netbirdio/dashboard/issues/9#issuecomment-1195553918

I suggest that we take a look at it at one of the two meetings tomorrow.

@livio-a did you have any progress on the device flow?

braginini avatar Jul 27 '22 09:07 braginini

@braginini love to hear this

Let me chat with @hifabienne and @livio-a on how to schedule this. We are close to release ZITADEL v2 and afterwards some of our stuff might have time to look at this.

fforootd avatar Jul 27 '22 21:07 fforootd

Hey guys, any progress here?

braginini avatar Sep 30 '22 09:09 braginini

Hi @braginini

Sorry we have not yet started with this. And currently we can't tell you a specific time when this will be finished, since we still have some other features that are higher in priority. We still think that this is something we like to implement soon.

Also PRs are highly appreciated. 😃

hifabienne avatar Sep 30 '22 13:09 hifabienne

@hifabienne this seems to be the blocker for the sovereign cloud stack. Their IAM workgroup is currently evaluating ZITADEL as IAM component. Would be great, if you could take this into consideration for planning. I will get more information on 2023-01-16, if SCS would be able to contribute.

mffap avatar Jan 16 '23 09:01 mffap

I have created a user story according to this to be able to take it into our sprint planning, please subscribe to the following issue to get the updates on the state: https://github.com/zitadel/oidc/issues/264

hifabienne avatar Jan 16 '23 09:01 hifabienne

Just to raise some expectations 😁 https://github.com/zitadel/oidc/pull/285

fforootd avatar Feb 22 '23 19:02 fforootd

Closing as done in #285

muhlemmer avatar Mar 01 '23 10:03 muhlemmer