Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

[Security] OIDC user info token handler client #18354

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 1 commit into from
Jul 4, 2023
Merged

[Security] OIDC user info token handler client #18354

merged 1 commit into from
Jul 4, 2023

Conversation

vincentchalamon
Copy link
Contributor

No description provided.

@carsonbot carsonbot added this to the 6.3 milestone May 30, 2023
@vincentchalamon vincentchalamon mentioned this pull request May 30, 2023
Merged
vincentchalamon
vincentchalamon commented May 30, 2023
View reviewed changes
security/access_token.rst Show resolved Hide resolved
nicolas-grekas added a commit to symfony/symfony that referenced this pull request May 30, 2023
@nicolas-grekas
bug #50470 [SecurityBundle] Fix configuring OIDC user info token hand…
5c46e7e 
…ler client (vincentchalamon)

This PR was squashed before being merged into the 6.3 branch.

Discussion
----------

[SecurityBundle] Fix configuring OIDC user info token handler client

| Q             | A
| ------------- | ---
| Branch?       | 6.3
| Bug fix?      | no
| New feature?  | no
| Deprecations? | no
| Tickets       | N/A
| License       | MIT
| Doc PR        | symfony/symfony-docs#18354

Cf. #50453 (comment)

Commits
-------

23c9e17 [SecurityBundle] Fix configuring OIDC user info token handler client
@vincentchalamon
Copy link
Contributor Author

@nicolas-grekas are you aware of this issue?

image

@nicolas-grekas
Copy link
Member

Needs a fix indeed...

@vincentchalamon vincentchalamon mentioned this pull request May 31, 2023
Closed
@vincentchalamon
Copy link
Contributor Author

OK found it: security.access_token_handler.oidc.signature is declared as an abstract service AND a factory, but I don't think it's possible to combine both as an abstract factory:

->set('security.access_token_handler.oidc.signature', Algorithm::class)
    ->abstract()
    ->factory([SignatureAlgorithmFactory::class, 'create'])
    ->args([
        abstract_arg('signature algorithm'),
    ])

->set('security.access_token_handler.oidc.signature.ES256', ES256::class)
    ->parent('security.access_token_handler.oidc.signature')
    ->args(['index_0' => 'ES256'])

@nicolas-grekas is there any way to declare an abstract factory, or should I call the factory on each service declaration?

@nicolas-grekas
Copy link
Member

Strange, I would expect this to work. I can have a look a bit later.

@vincentchalamon vincentchalamon mentioned this pull request Jun 7, 2023
Merged
2 tasks
@alexander-schranz alexander-schranz mentioned this pull request Jul 4, 2023
Closed
@javiereguiluz
Copy link
Member

Thank you Vincent.

@javiereguiluz javiereguiluz merged commit 42c3280 into symfony:6.3 Jul 4, 2023
@vincentchalamon vincentchalamon deleted the fix/security/oidc_user_info-token_handler-client branch July 4, 2023 13:04
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@nicolas-grekas nicolas-grekas Awaiting requested review from nicolas-grekas

Assignees
No one assigned
Labels
Security Status: Reviewed
Projects
None yet
Milestone
6.3
Development

Successfully merging this pull request may close these issues.
4 participants
@vincentchalamon @nicolas-grekas @javiereguiluz @carsonbot
Morty Proxy This is a proxified and sanitized view of the page, visit original site.