passport-ibmid-oauth2's Issues
Where is /userinfo endpoint?
As part of authentication handshake, we receive a profile object, in addition to access and refresh tokens. In UAA and other OIDC providers, it is possible to make a request with 'Authorization: bearer <accessToken' HTTP header and receive an equivalent profile JSON as a response. How would I do that with idaas.ng.bluemix.net?
In addition, what would be the option to call other IDaaS providers in different data centers?
include sample app
Could you include a sample app with the git repo?
Also provide the "API" required in the README.md
Can this be used with the new SSO version 2 of bluemix?
I wonder if this module works with the new SingleSignOn version in Bluemix?
https://www.ng.bluemix.net/docs/#services/SingleSignOn/index.html#sso_gettingstarted
Note: This documentation replaces the documentation for previous versions of the Single Sign On service. If you used the service before December 29, 2014, see IBM Single Sign On for Bluemix Version 1.0 documentation.
The new documentation does not mention any way how to implement SSO within a native app (the old used to!) so I was wondering if it possible to do this with this module?
I guess my server should send a challenge with an authorization url the native mobile app should should in the browser, after sso it should go back to the native app. the problem is where do I get this url from?
I was trying passport-idaas-openidconnect
(which is module mentioned in this new documentation) but so far I don't know how to make it work with a native app.
Link no longer valid in README
The link for IBM ID Documentation
no longer works in the README file. Can you update this with the new link?
Update dependency to passport-oauth 1.0.0
Older versions of passport-oauth depend on Passport core, causing outdated versions of req.login to be added to the HttpRequest prototype. This interferes with newer versions of Passport that have different internals, as seen here: jaredhanson/passport#400 (comment)
Logout URL is invalid
It looks like that this URL is no longer in use:
https://www-947.ibm.com/pkmslogout?page=
Do you know what is the replacement for logging out from SSO?
parameterize SSO URLs
In these lines in strategy.js, you are hard-coding the SSO URLs.
I believe you can get these values when you bind an "SSO" service to your app in BlueMix. As such, you should provide a way to pass these in.
I'd recommend some way of passing just the service name in; it would also be nice to be able to provide the SSO_CLIENT_ID and SSO_CLIENT_SECRET as a service as well, that way I could create the (user-provided) service once, and re-use it over and over again.
You might make these "ibmid*" properties, like this:
passport.use('ibmid', new IbmIdStrategy({
ibmidClietService: "ibmid-client-info",
ibmidSSOService: "bluemix-sso",
...
callbackURL: 'https://' + url + '/auth/ibmid/callback',
where "ibmid-client-info" and "bluemix-sso" are service names you get from VCAP_SERVICES.
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
๐ Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. ๐๐๐
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google โค๏ธ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.