Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Abort authorization code with PKCE request with data #1075

Open
abdallah-odeh opened this issue Jul 2, 2024 · 0 comments
Open

Abort authorization code with PKCE request with data #1075

abdallah-odeh opened this issue Jul 2, 2024 · 0 comments
Labels
question

Comments

@abdallah-odeh
Copy link

Configuration

  • Version: 0.11.1
  • Integration: Java
  • Identity provider: identityServer4

Description

Hello there,
I am trying to implement the a device registration scenario,

  1. the user clicks Login
  2. a webview is opened to login using Authorization code with PKCE flow
  3. after a successful login and right before issuing a token
  • if used device is already registered for user
    • then we issue a token & authenticate the user
  • else
    • we abort the login process (close webview), redirect the user to device registration cycle
    • after completing the device registration, we redirect him back to login

currently, the device registration cycle is implemented in the webview
the question is; is there a way to close the webview (without access token object) and return an error to the user along with some info (user id, device id, tenant id, etc ...) to be able to go through device registration cycle from mobile side

thanks in advance
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
question
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@abdallah-odeh