dhis2-devs team mailing list archive

Thread
Date

Re: Query around OAuth implicit grant

To: Morten Olav Hansen <morten@xxxxxxxxx>
From: Lorill Crees <lcrees@xxxxxxxxxx>
Date: Mon, 10 Sep 2018 09:26:13 -0700
Cc: evgenia.zelikova@xxxxxxxxxxxxx, thomas.rodriguez@xxxxxxxxxxxxx, twmsf@xxxxxxxxxxxxxxxx, anceline.dupouy@xxxxxxxxxxxxx, megan.mcguire@xxxxxxxxxxxxxxx, DHIS 2 Developers list <dhis2-devs@xxxxxxxxxxxxxxxxxxx>, kristina.reinhardt@xxxxxxxxxxxxxxx, sonia.diverres@xxxxxxxxxxxxx
In-reply-to: <CAKzUaAeE3EyaHXXM-SMaDdcnS8LEF0VEFAJGtFpk6Q08P7TyzQ@mail.gmail.com>

Ok, thanks Morten.

On Sun, Sep 9, 2018 at 5:39 PM Morten Olav Hansen <morten@xxxxxxxxx> wrote:

> Hi
>
> To support OpenID connect we would have to upgrade to Spring Security 5
> (and that would also mean Spring 5), this is not a high priority for us
> right now.
>
> We don't have any plans to support DHIS2 being a OAuth2 client (you might
> be able to do this in your own apps using a OAuth2 JS library maybe..)
>
> --
> Morten Olav Hansen
> Senior Engineer, DHIS 2
> Team Integration Lead
> University of Oslo
> http://www.dhis2.org
>
>
> On Fri, Sep 7, 2018 at 5:54 AM Lorill Crees <lcrees@xxxxxxxxxx> wrote:
>
>> Hi Morten,
>>
>> 1. What is the timeline for the DHIS 2 upgrade to the latest OAuth 2
>> Spring libraries and the implementation of OpenID Connect?
>>
>> 2. Is there anything in the DHIS 2 roadmap for enabling DHIS 2 to be an
>> Oauth2 client in order to authenticate against another Oauth2 provider?
>>
>> Thanks,
>>
>> Lorill
>>
>> On Fri, Aug 3, 2018 at 8:39 PM Morten Olav Hansen <morten@xxxxxxxxx>
>> wrote:
>>
>>> Hi Rajeswari & Gaurav
>>>
>>> We don't have any immediate plans to expand our OAuth2 implementation,
>>> not until we upgrade to the latest OAuth2 Spring libraries (which require
>>> spring 5), and then also implement OpenID Connect.
>>>
>>> That said, we do support authorization code which I think should serve
>>> your purposes well? yes I know the implicit grant is a bit simpler to
>>> setup, but I think the authorization code approach should work fine for you
>>> also.
>>>
>>>
>>> --
>>> Morten Olav Hansen
>>> Senior Engineer, DHIS 2
>>> Team Integration Lead
>>> University of Oslo
>>> http://www.dhis2.org
>>>
>>> On Fri, Aug 3, 2018 at 5:07 PM, Rajeswari Gottipati <
>>> rajeswag@xxxxxxxxxxxxxxxx> wrote:
>>>
>>>> Hi DHIS,
>>>>
>>>> We have gone through DHIS OAuth documentation and found that DHIS has
>>>> implemented Authorization code grant. We are planning to use DHIS
>>>> OAuth in our application and our application is pure java script based.
>>>>
>>>> As our application is SPA (single page application) hence we are
>>>> looking for implicit grant OAuth. Are there any plans to implement this in
>>>> near future.
>>>>
>>>> Thanks,
>>>> Rajeswari & Gaurav.
>>>>
>>>
>>> _______________________________________________
>>> Mailing list: https://launchpad.net/~dhis2-devs
>>> Post to     : dhis2-devs@xxxxxxxxxxxxxxxxxxx
>>> Unsubscribe : https://launchpad.net/~dhis2-devs
>>> More help   : https://help.launchpad.net/ListHelp
>>>
>>
>>
>> --
>> Lorill Crees
>> Project Leader / Senior Developer
>> 2Paths Solutions Ltd. <http://www.2paths.com>
>>
>> lcrees@xxxxxxxxxx
>> skype: lorill2paths
>> (604) 689-4123 x 15
>>
>

-- 
Lorill Crees
Project Leader / Senior Developer
2Paths Solutions Ltd. <http://www.2paths.com>

lcrees@xxxxxxxxxx
skype: lorill2paths
(604) 689-4123 x 15

References

Query around OAuth implicit grant
From: Rajeswari Gottipati, 2018-08-03
Re: Query around OAuth implicit grant
From: Morten Olav Hansen, 2018-08-04
Re: Query around OAuth implicit grant
From: Lorill Crees, 2018-09-06
Re: Query around OAuth implicit grant
From: Morten Olav Hansen, 2018-09-10