Implement OIDC token exchange (!501) · Merge requests · LemonLDAP NG / lemonldap-ng

Yadd requested to merge 3148-oidc-token-exchange into v2.0 May 07, 2024

This feature exists in Keycloak. Here is a simple implementation: just to declare the list of Relying Party allowed to query an access_token for the current Relying Party.

This implementation is split into:

a base class usable for all oidcGotTokenExchange plugins (used also by Matrix token exchange)
the OIDC Internal Token Exchange itself

Related to #3148

Edited May 07, 2024 by Yadd

Admin message

Implement OIDC token exchange

Merge request reports