00746ea636
The OpenID Connect specifies that all providers must return a JSON discovery document [1] in a well-known location. We can let the user pass this document instead of the individual endpoints (i.e. token and authorization endpoint). Moreover, we can also check if the requested grant_type (implicit to the used plugin, and one of client_credentials, password, authorization_code) is supported by the provider before starting the auth flow. [1] https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata Fixes-bug: #1583682 Change-Id: I24b7960b25ddcff45552c0ab5541d92122d1d560
24 lines
1.1 KiB
Python
24 lines
1.1 KiB
Python
# Licensed under the Apache License, Version 2.0 (the "License"); you may
|
|
# not use this file except in compliance with the License. You may obtain
|
|
# a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS, WITHOUT
|
|
# WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. See the
|
|
# License for the specific language governing permissions and limitations
|
|
# under the License.
|
|
|
|
|
|
from keystoneauth1.exceptions.auth import * # noqa
|
|
from keystoneauth1.exceptions.auth_plugins import * # noqa
|
|
from keystoneauth1.exceptions.base import * # noqa
|
|
from keystoneauth1.exceptions.catalog import * # noqa
|
|
from keystoneauth1.exceptions.connection import * # noqa
|
|
from keystoneauth1.exceptions.discovery import * # noqa
|
|
from keystoneauth1.exceptions.http import * # noqa
|
|
from keystoneauth1.exceptions.oidc import * # noqa
|
|
from keystoneauth1.exceptions.response import * # noqa
|
|
from keystoneauth1.exceptions.service_providers import * # noqa
|