[Koha-bugs] [Bug 25796] Allow REST API to use external OAuth2 authorization server
bugzilla-daemon at bugs.koha-community.org
bugzilla-daemon at bugs.koha-community.org
Thu Jun 18 05:41:18 CEST 2020
https://bugs.koha-community.org/bugzilla3/show_bug.cgi?id=25796
--- Comment #1 from David Cook <dcook at prosentient.com.au> ---
One of the advantages of using an external server like Keycloak would also be
that the API would be able to be used with many different grant types and not
just client credentials.
At some point, I'm planning to upstream some work I've done on integrating
Keycloak (and any other compliant OpenID Connect Identity Provider) via Bug
21586 for regular end user login.
For what it's worth, this is a setup I've worked on with other projects. There
will be a central identity provider, which can also include authorization
information, and all the organisation's applications will use that same central
IdP to issues tokens, and then all the applications are configured to consume
those signed (JWT) tokens.
--
You are receiving this mail because:
You are the assignee for the bug.
You are watching all bug changes.
More information about the Koha-bugs
mailing list