Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Update support of MSC2965 OAuth 2.0 Authorization Server Metadata discovery #4550

Open
sandhose opened this issue Jan 17, 2025 · 1 comment

Comments

@sandhose
Copy link
Member

sandhose commented Jan 17, 2025

MSC2965 was updated to use a C-S API endpoint to retrieve the authorisation server metadata, instead of relying on the OpenID Connect Discovery spec.

One thing that is a little annoying, is that the SDK currently relies on crates originally published by MAS, that aren't updated anymore, and that were pretty pedantic about the server metadata discovery.

This means that a lot of the logic might have to be backported to within the SDK instead, so even if the MSC2965 change is supposed to be relatively small, in practice it might be bigger to do for the SDK.

Note that this isn't too urgent, as MAS intends to keep the old endpoint working for some time, to avoid breaking other apps.

Synapse implementation: element-hq/synapse#18093

@zecakeh
Copy link
Collaborator

zecakeh commented Jan 20, 2025

I opened ruma/ruma#1997 to add the new endpoint to Ruma.

I also opened ramosbugs/oauth2-rs#298 on the oauth2 crate to add support for the provider metadata and client registration. These seem to be the only missing RFCs that would be needed currently. In the worst case scenario they could be implemented in the SDK.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

No branches or pull requests

2 participants