Loading...

XML

Word

Printable

Details

Type: Story
Resolution: Done
Priority: Minor
Fix Version/s: None
Affects Version/s: None
Labels:
None

Epic Link:
SHIBUI 5.0 - OIDC
Sprint:
Sprint 10, Sprint 11, Sprint 12, Sprint 13

Description

MOIDC support will be part of the distributed IdP with v4.1

Note: You need to use the "profile of SAML metadata for OIDC", not the JSON format, if you want to take advantage of metadata-driven relying party overrides, embedded entity attributes to drive attribute release etc.

Additional Information:

OIDC metadata: OPMetadataClientRegistration
Many of the same overrides, and a similar approach to controlling attributes released, can apply to OIDC integrations.
University of Illinois is very interested in this functionality being included in SHIBUI. They currently use OIDC metadata and have go generate the metadata by hand.

Metadata Examples:

https://shibboleth.atlassian.net/wiki/spaces/SC/pages/1912406916/OAuthRPMetadataProfile

Attachments

Sub-Tasks

1.

Done

Charles Hasegawa (unicon.net)

0%

Original Estimate - Not Specified

Original Estimate - Not Specified

Remaining Estimate - 4 hours

2.

UI - Add ability to Create OIDC Metadata Source

Done

Ryan Mathis (unicon.net)

3.

Done

Charles Hasegawa (unicon.net)

83%

Original Estimate - Not Specified

Original Estimate - Not Specified

Time Spent - 4 days, 3 hours

Remaining Estimate - 7 hours

4.

Done

Bill Smith (unicon.net)

5.

Done

Doug Sonaty

6.

Update tooltips on Metadata Source screens

Done

Doug Sonaty

7.

Authentication Protocol field is editable when editing an OIDC Metadata Source

Done

Doug Sonaty

8.

Undefined error being displayed when saving a metadata source with Element Type = clientSecretRef

Done

Doug Sonaty

9.

Error occurs when copying an OIDC metadata source

Done

Doug Sonaty

10.

Audience value not being saved for OIDC metadata sources

Done

Doug Sonaty

11.

Request Object Encryption Encoding field is misspelled

Done

Doug Sonaty

12.

Research overrides and controlling attributes for OIDC

Done

Doug Sonaty

13.

Remove Client Secret/Client Secret Ref

Done

Doug Sonaty

14.

Group's URL Validation Regex error message no longers displays

Done

Bill Smith (unicon.net)

15.

400 returned when attempting to compare Metadata Source versions with x509 certs

Done

Bill Smith (unicon.net)

16.

Previously created Metadata Sources' Protocols not appearing on Dashboard

Done

Doug Sonaty

17.

Fix tooltips for OIDC Relying Party Overrides

Done

Doug Sonaty

18.

OIDC Relying Party Overrides Booleans should have a default value of true

Done

Doug Sonaty

19.

Values for Security Configuration and Ignore any SP-Requested Authentication Method? are not being displayed on configuration screen

Done

Doug Sonaty

20.

Copying OIDC metadata sources shows SAML attributes before saving

Done

Doug Sonaty

Activity

People

Assignee:: Steven Erickson (unicon.net)

Reporter:: Steven Erickson (unicon.net)

Votes:: 0 Vote for this issue

Watchers:: 1 Start watching this issue

Dates

Created:: 08/Sep/22 3:51 PM

Updated:: 27/Oct/22 8:13 PM

Resolved:: 27/Oct/22 8:13 PM

Time Tracking

Estimated:

Not Specified

Remaining:

2d 2h

Logged:

1w 1d 1h 2m

Include sub-tasks