Return short living password as OIDC claim. Then Roundcube will use it as user password.
Note: This requires some upstream patches, so right now you can't test this with webmail.
Paths
| Differential D4899 Authored by machniak on Aug 28 2024, 2:35 PM.
Tags None Referenced Files
Subscribers
Details
Summary Return short living password as OIDC claim. Then Roundcube will use it as user password. Note: This requires some upstream patches, so right now you can't test this with webmail. Test Plan ./phpunit
Diff Detail
Event Timelinemachniak created this revision. Harbormaster completed remote builds in B48822: Diff 14037.Aug 28 2024, 2:35 PM2024-08-28 14:35:20 (UTC+2) Comment Actions Looks nice and concise. It seems the alternative would be to request the access token via a protected api route, which I suppose would require more manual handling to make the token then available to the server and refresh it when necessary, so this seems like a good option.
This revision is now accepted and ready to land.Aug 29 2024, 12:18 PM2024-08-29 12:18:15 (UTC+2) Harbormaster completed remote builds in B48861: Diff 14073.Aug 29 2024, 2:19 PM2024-08-29 14:19:55 (UTC+2) Closed by commit rK03fc36160e31: Single-Sign-On for Webmail (authored by machniak). · Explain WhyAug 29 2024, 2:21 PM2024-08-29 14:21:06 (UTC+2) This revision was automatically updated to reflect the committed changes.
Revision Contents
Diff 14076 config.demo/src/database/seeds/PassportSeeder.php
src/app/Auth/IdentityEntity.php
src/app/Auth/Utils.php
src/app/Http/Controllers/API/AuthController.php
|