1:11 p.m.
Hello,
the current OIDC frontend (openid_connect) does not support Token
Introspection (the /introspect endpoint). Work to support it should
not be very hard and contributions are welcome.
At the same time, there is a new frontend being developed under
eduTEAMS mainly by GRNET that is based on the oidcendpoint[0] library.
That frontend does support the introspection endpoint and has
additional capabilities. This work is not public yet, but it is
intended to be. The work has been delayed due to big changes in
oidcendpoint (see, new session management) and further changes, taking
place now, that move the library inside the oidc-op[1] package. Once
the home and structure of the oidcendpoint code settles down, the new
frontend should be released according to eduTEAMS and GEANT's plans.
Cheers,
[0]: https://github.com/IdentityPython/oidcendpoint
[1]: https://github.com/IdentityPython/oidc-op/tree/incl_oidcendpoint
On Tue, 18 May 2021 at 13:07, Thijs Kinkhorst <thijs.kinkhorst at surf.nl> wrote:
Hi all,
I've set up Satosa as a proxy between a SAML 2.0 backend and an OpenID
Connect frontend (OP). This works fine for the basic flow, but the RP
indicates they're missing the introspect endpoint. I was looking though
the docs but could not find information about support for it. Am I
overlooking something or does Satosa not support introspection?
Kind regards,
Thijs Kinkhorst
SURF
_______________________________________________
satosa-users mailing list
satosa-users at lists.sunet.se
https://lists.sunet.se/listinfo/satosa-users
--
Ivan c00kiemon5ter Kanakarakis >:3