himanshug commented on issue #8992: druid extension for OpenID Connect auth using pac4j lib URL: https://github.com/apache/druid/pull/8992#issuecomment-603393558 @jon-wei thanks for the review. Also, I have been researching a bit to see if there is a programmatic way to do the `user/resource_owner <--> oauth_server/identity_provider/okta_server` integration to get right tokens , however I couldn't find it. This extension currently implements https://aaronparecki.com/oauth-2-simplified/#web-server-apps flow so that user's access to router web console could be protected using their company's existing enterprise authentication system if it is OAuth and OpenID Connect based (..most company's use Okta for that). However, I can't see even a Okta specific way of automating that part of user auth. That said, I am not an OAuth expert(it is non-trivial with multiple versions/revisions/extensions) and could be missing something.
---------------------------------------------------------------- This is an automated message from the Apache Git Service. To respond to the message, please log on to GitHub and use the URL above to go to the specific comment. For queries about this service, please contact Infrastructure at: us...@infra.apache.org With regards, Apache Git Services --------------------------------------------------------------------- To unsubscribe, e-mail: commits-unsubscr...@druid.apache.org For additional commands, e-mail: commits-h...@druid.apache.org
