Uploaded image for project: 'OpenShift Authentication'
  1. OpenShift Authentication
  2. AUTH-356

Add a new OAuthClient to the CAO that obtains tokens through PKCE


    • Icon: Task Task
    • Resolution: Done
    • Icon: Major Major
    • openshift-4.14
    • None
    • None
    • Auth - Sprint 234, Auth - Sprint 235, Auth - Sprint 236, Auth - Sprint 237, Auth - Sprint 238

      In order for the OAuth2 Authorization Code Grant Flow to work in oc browser login, we need a new OAuthClient that can obtain tokens through [PKCE|https://datatracker.ietf.org/doc/html/rfc7636,] as the existing clients do not have this capability. The new client will be called openshift-cli-client and will have the loopback addresses as valid Redirect URIs.

            rh-ee-irinis Ilias Rinis
            rh-ee-irinis Ilias Rinis
            0 Vote for this issue
            1 Start watching this issue