-
Notifications
You must be signed in to change notification settings - Fork 469
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
fix(oidc): upgrade zitadel/oidc to allow scope without openid #8109
Conversation
This change upgrades the oidc package to include zitadel/oidc#613. This will drop the requirement of the `openid` scope in all auth and token request types.
The latest updates on your projects. Learn more about Vercel for Git ↗︎
|
Thanks for your contribution @muhlemmer! 🎉Please make sure you tick the following checkboxes before marking this Pull Request (PR) as ready for review:
|
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## main #8109 +/- ##
=======================================
Coverage ? 62.08%
=======================================
Files ? 1400
Lines ? 112844
Branches ? 0
=======================================
Hits ? 70054
Misses ? 38858
Partials ? 3932
Flags with carried forward coverage won't be shown. Click here to find out more. ☔ View full report in Codecov by Sentry. |
@muhlemmer should we change the title to |
# Which Problems Are Solved Drop the requirement of the `openid` scope in all auth and token request types. # How the Problems Are Solved This change upgrades the oidc package to include zitadel/oidc#613. # Additional Changes - Fix a typo in a go doc string - upgrade otel modules to match the version from oidc. # Additional Context - #7822 started doing scope validation for machine user authentication on the token endpoint. - #8068 reports breakage of machine authentication without `openid` scope. - Merge after zitadel/oidc#613 is released. (cherry picked from commit 81cc7c6)
# Which Problems Are Solved Drop the requirement of the `openid` scope in all auth and token request types. # How the Problems Are Solved This change upgrades the oidc package to include zitadel/oidc#613. # Additional Changes - Fix a typo in a go doc string - upgrade otel modules to match the version from oidc. # Additional Context - #7822 started doing scope validation for machine user authentication on the token endpoint. - #8068 reports breakage of machine authentication without `openid` scope. - Merge after zitadel/oidc#613 is released. (cherry picked from commit 81cc7c6)
# Which Problems Are Solved Drop the requirement of the `openid` scope in all auth and token request types. # How the Problems Are Solved This change upgrades the oidc package to include zitadel/oidc#613. # Additional Changes - Fix a typo in a go doc string - upgrade otel modules to match the version from oidc. # Additional Context - #7822 started doing scope validation for machine user authentication on the token endpoint. - #8068 reports breakage of machine authentication without `openid` scope. - Merge after zitadel/oidc#613 is released.
🎉 This PR is included in version 2.55.0 🎉 The release is available on GitHub release Your semantic-release bot 📦🚀 |
…l#8109) # Which Problems Are Solved Drop the requirement of the `openid` scope in all auth and token request types. # How the Problems Are Solved This change upgrades the oidc package to include zitadel/oidc#613. # Additional Changes - Fix a typo in a go doc string - upgrade otel modules to match the version from oidc. # Additional Context - zitadel#7822 started doing scope validation for machine user authentication on the token endpoint. - zitadel#8068 reports breakage of machine authentication without `openid` scope. - Merge after zitadel/oidc#613 is released.
Which Problems Are Solved
Drop the requirement of the
openid
scope in all auth and token request types.How the Problems Are Solved
This change upgrades the oidc package to include zitadel/oidc#613.
Additional Changes
Additional Context
openid
scope.