develop #29

Merged

niat8586 merged 3 commits from develop into main

2025-03-26 10:40:49 +01:00

Author	SHA1	Message	Date
Nico Athanassiadis	9bf855875b	Merge pull request 'Title in head element' (#28 ) from head-title-spelling into develop Reviewed-on: #28	2025-03-26 10:17:34 +01:00
Nico Athanassiadis	b7b74f2e35	Title in head element The title in the head element was mispelled previously it showed 'Seshat Auido Transcriber'. Now it's fixed to the correct spelling 'Seshat Audio Transcriber'.	2025-03-26 10:05:01 +01:00
Nico Athanassiadis	f7466a57df	Use OAuth 2.0 Token Introspection during log in (#27 ) Currently, it uses an endpoint similar to OpenID Connect UserInfo but with some differences. The endpoint does not require the "openid" scope for example. There is an ongoing effort to replace the OAuth 2.0 authorization server with a more standard compliant one which would break the endpoint (since it would require the "openid" scope). It is currently not possible to request the "openid" scope to future-proof since Spring would act differently if that scope is present and assume full OpenID Connect. That leads to requiring an id token to have been issued which the current authorization server does not do. To get around this the implementation is changed to use a standard compliant Token Introspection endpoint to get access to the subject of the access token (which is the only part that's necessary right now). Since the endpoint is standard compliant it will work with any future authorization server. It may be necessary to run docker compose up --build to get the latest version of the Toker containers. Co-authored-by: Andreas Svanberg <andreass@dsv.su.se> Reviewed-on: #27 Reviewed-by: Andreas Svanberg <andreass@dsv.su.se> Co-authored-by: Nico Athanassiadis <nico@dsv.su.se> Co-committed-by: Nico Athanassiadis <nico@dsv.su.se>	2025-03-25 15:48:32 +01:00

Author

SHA1

Message

Date

Nico Athanassiadis

9bf855875b

Merge pull request 'Title in head element' (#28 ) from head-title-spelling into develop

Reviewed-on: #28

2025-03-26 10:17:34 +01:00

Nico Athanassiadis

b7b74f2e35

Title in head element

The title in the head element was mispelled previously
it showed 'Seshat Auido Transcriber'.

Now it's fixed to the correct spelling 'Seshat Audio Transcriber'.

2025-03-26 10:05:01 +01:00

Nico Athanassiadis

f7466a57df

Use OAuth 2.0 Token Introspection during log in (#27 )

Currently, it uses an endpoint similar to OpenID Connect UserInfo but with some differences. The endpoint does not require the "openid" scope for example. There is an ongoing effort to replace the OAuth 2.0 authorization server with a more standard compliant one which would break the endpoint (since it would require the "openid" scope). It is currently not possible to request the "openid" scope to future-proof since Spring would act differently if that scope is present and assume full OpenID Connect. That leads to requiring an id token to have been issued which the current authorization server does not do.

To get around this the implementation is changed to use a standard compliant Token Introspection endpoint to get access to the subject of the access token (which is the only part that's necessary right now). Since the endpoint is standard compliant it will work with any future authorization server.

It may be necessary to run docker compose up --build to get the latest version of the Toker containers.

Co-authored-by: Andreas Svanberg <andreass@dsv.su.se>
Reviewed-on: #27
Reviewed-by: Andreas Svanberg <andreass@dsv.su.se>
Co-authored-by: Nico Athanassiadis <nico@dsv.su.se>
Co-committed-by: Nico Athanassiadis <nico@dsv.su.se>

2025-03-25 15:48:32 +01:00

develop #29

3 Commits