-
- Downloads
Add `redirect_uri` option to `oidc_providers` entries (#18197)
Allows overriding the `redirect_uri` parameter sent to both the
authorization and token endpoints of the IdP. Typically this parameter
is hardcoded to `<public_baseurl>/_synapse/client/oidc/callback`.
Yet it can be useful in certain contexts to allow a different callback
URL. For instance, if you would like to intercept the authorization code
returned from the IdP and do something with it, before eventually
calling Synapse's OIDC callback URL yourself.
This change enables enterprise use cases but does not change the default
behaviour.
---
Best reviewed commit-by-commit.
---------
Co-authored-by: 
Eric Eastwood <erice@element.io>
Showing
- changelog.d/18197.feature 1 addition, 0 deletionschangelog.d/18197.feature
- docs/usage/configuration/config_documentation.md 7 additions, 0 deletionsdocs/usage/configuration/config_documentation.md
- synapse/config/oidc.py 16 additions, 0 deletionssynapse/config/oidc.py
- synapse/handlers/oidc.py 6 additions, 1 deletionsynapse/handlers/oidc.py
- tests/handlers/test_oidc.py 50 additions, 0 deletionstests/handlers/test_oidc.py
Loading
Please register or sign in to comment