Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Implement the device authorization endpoint #2

Merged
merged 9 commits into from
Feb 27, 2024
Merged

Implement the device authorization endpoint #2

merged 9 commits into from
Feb 27, 2024

Conversation

nsklikas
Copy link

@nsklikas nsklikas commented Feb 6, 2024

Implement the device authorization endpoint. The changes in this PR are based on the work done in ory#701 (a lot of the work is taken unchanged).

This PR is intended to implement the logic described in paragraphs RFC8628 - Section 3.1 and RFC8628 - Section 3.1.

These changes are tested using a hydra fork.

Even though this PR includes only ~half of the work needed to implement the device flow, it is still quite chunky. Perhaps I should try to break it down further.

alesstimec
alesstimec reviewed Feb 8, 2024
View reviewed changes
Copy link

@alesstimec alesstimec left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looks good, mostly style comments..

compose/compose_rfc8628.go Outdated Show resolved Hide resolved
compose/compose_rfc8628.go Show resolved Hide resolved
compose/compose_strategy.go Show resolved Hide resolved
config.go Show resolved Hide resolved
config.go Show resolved Hide resolved
oauth2.go Show resolved Hide resolved
storage/memory.go Show resolved Hide resolved
storage/memory.go Show resolved Hide resolved
storage/memory.go Show resolved Hide resolved
token/hmac/hmacsha.go Show resolved Hide resolved
@nsklikas
fix: Use Requester param in WriteAccessError
4137808 
The WriteAccessError is used to construct error responses as described
in Section 5.2 of [RFC6749]. It is not limited to access token
responses.

Perhaps we should rename the function to Rfc6749TokenError.
@nsklikas
fix: generalize validateAuthorizeAudience method
7ef1fb0
@nsklikas
feat: add device flow base logic
4474d73
@nsklikas
fix: add handler for device authorization req
ffd3661
@nsklikas
fix: add device flow handlers to compose
f04f7ec
@nsklikas
fix: update memory storage
eb86df8
@nsklikas
chore: update integration tests
f2c68de
@nsklikas nsklikas force-pushed the IAM-653 branch 4 times, most recently from cb19a90 to 93b9238 Compare February 9, 2024 12:43
@nsklikas
Copy link
Author

nsklikas commented Feb 9, 2024

I added docs to all public functions/packages and tried to fix as much as possible. I didn't make some of the style changes to keep consistency with the project style.

@nsklikas nsklikas requested a review from alesstimec February 9, 2024 12:45
This was referenced Feb 9, 2024
Closed
Merged
shipperizer
shipperizer previously approved these changes Feb 9, 2024
View reviewed changes
alesstimec
alesstimec approved these changes Feb 12, 2024
View reviewed changes
Copy link

@alesstimec alesstimec left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

generally looks ok.. a few remaining comments.. and you might want to change the copyright year to 2024 in all the files you've added.

audience_strategy.go Show resolved Hide resolved
fosite.go Show resolved Hide resolved
device_request_handler.go Outdated Show resolved Hide resolved
device_request_handler.go Outdated Show resolved Hide resolved
device_request_handler.go Show resolved Hide resolved
device_request_handler_test.go Outdated Show resolved Hide resolved
device_response.go Show resolved Hide resolved
device_response_writer.go Show resolved Hide resolved
handler/rfc8628/auth_handler_test.go Outdated Show resolved Hide resolved
BarcoMasile
BarcoMasile previously approved these changes Feb 12, 2024
View reviewed changes
@nsklikas nsklikas dismissed stale reviews from BarcoMasile and shipperizer via 6322f68 February 12, 2024 12:42
@nsklikas nsklikas enabled auto-merge February 26, 2024 15:51
@nsklikas nsklikas merged commit fee676b into canonical Feb 27, 2024
5 checks passed
@nsklikas nsklikas deleted the IAM-653 branch February 27, 2024 09:16
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@alesstimec alesstimec alesstimec approved these changes

@shipperizer shipperizer shipperizer left review comments

@BarcoMasile BarcoMasile BarcoMasile approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@nsklikas @shipperizer @alesstimec @BarcoMasile