[Koha-bugs] [Bug 28420] Allow login via AzureAD OpenID-Connect
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Wed May 26 11:22:28 CEST 2021
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=28420
--- Comment #10 from mark.jaroski at gmail.com ---
That's great!
I think it's reasonable to cache the metadata somehow and then instead of
grabbing it every time you can check the age of the cached data.
I wouldn't want to keep it indefinitely because the IDP might need to switch
signing certificates. Traditionally these are self-signed because they work
more like pre-shared keys than TLS certificates which need to be signed by an
authority. At least that's how we did it with SAML. We just used x509 for
shipping the keys because it was handy.
--
You are receiving this mail because:
You are watching all bug changes.
You are the assignee for the bug.
More information about the Koha-bugs
mailing list