https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=28420 --- Comment #6 from David Cook <dcook@prosentient.com.au> --- (In reply to mark.jaroski from comment #3)
I agree with David Cook, however, that this isn't ideal, since OpenID-Connect support should work with any identity provider and since it should actually implement OpenID-Connect whereas this patch and the code that it's based on actually implement the code-grant flow, with an additional openid scope.
Actually even in my case I haven't fully implemented the spec as there's just so much to it. I've only implemented the Authorization Code flow, although I find that's typically what's used for server-side auth anyway. I think Implicit Flow is usually only used by JS apps? And I'm not familiar with Hybrid Flow. -- You are receiving this mail because: You are the assignee for the bug. You are watching all bug changes.