mirror of
https://github.com/bitwarden/server
synced 2026-01-01 16:13:33 +00:00
80740aa4ba
* [PM-2032] feat: add assertion options tokenable * [PM-2032] feat: add request and response models * [PM-2032] feat: implement `assertion-options` identity endpoint * [PM-2032] feat: implement authentication with passkey * [PM-2032] chore: rename to `WebAuthnGrantValidator` * [PM-2032] fix: add missing subsitute * [PM-2032] feat: start adding builder * [PM-2032] feat: add support for KeyConnector * [PM-2032] feat: add first version of TDE * [PM-2032] chore: refactor WithSso * [PM-2023] feat: add support for TDE feature flag * [PM-2023] feat: add support for approving devices * [PM-2023] feat: add support for hasManageResetPasswordPermission * [PM-2032] feat: add support for hasAdminApproval * [PM-2032] chore: don't supply device if not necessary * [PM-2032] chore: clean up imports * [PM-2023] feat: extract interface * [PM-2023] chore: add clarifying comment * [PM-2023] feat: use new builder in production code * [PM-2032] feat: add support for PRF * [PM-2032] chore: clean-up todos * [PM-2023] chore: remove token which is no longer used * [PM-2032] chore: remove todo * [PM-2032] feat: improve assertion error handling * [PM-2032] fix: linting issues * [PM-2032] fix: revert changes to `launchSettings.json` * [PM-2023] chore: clean up assertion endpoint * [PM-2032] feat: bypass 2FA * [PM-2032] fix: rename prf option to singular * [PM-2032] fix: lint * [PM-2032] fix: typo * [PM-2032] chore: improve builder tests Co-authored-by: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com> * [PM-2032] chore: clarify why we don't require 2FA * [PM-2023] feat: move `identityProvider` constant to common class * [PM-2032] fix: lint * [PM-2023] fix: move `IdentityProvider` to core.Constants * [PM-2032] fix: missing import * [PM-2032] chore: refactor token timespan to use `TimeSpan` * [PM-2032] chore: make `StartWebAuthnLoginAssertion` sync * [PM-2032] chore: use `FromMinutes` * [PM-2032] fix: change to 17 minutes to cover webauthn assertion * [PM-2032] chore: do not use `async void` * [PM-2032] fix: comment saying wrong amount of minutes * [PM-2032] feat: put validator behind feature flag * [PM-2032] fix: lint --------- Co-authored-by: Jared Snider <116684653+JaredSnider-Bitwarden@users.noreply.github.com>
63 lines
1.5 KiB
JSON
63 lines
1.5 KiB
JSON
{
|
|
"issuer": "http://localhost",
|
|
"jwks_uri": "http://localhost:33656/.well-known/openid-configuration/jwks",
|
|
"authorization_endpoint": "http://localhost:33656/connect/authorize",
|
|
"token_endpoint": "http://localhost:33656/connect/token",
|
|
"device_authorization_endpoint": "http://localhost:33656/connect/deviceauthorization",
|
|
"scopes_supported": [
|
|
"api",
|
|
"api.push",
|
|
"api.licensing",
|
|
"api.organization",
|
|
"api.installation",
|
|
"internal",
|
|
"api.secrets",
|
|
"offline_access"
|
|
],
|
|
"claims_supported": [
|
|
"name",
|
|
"email",
|
|
"email_verified",
|
|
"sstamp",
|
|
"premium",
|
|
"device",
|
|
"orgowner",
|
|
"orgadmin",
|
|
"orgmanager",
|
|
"orguser",
|
|
"orgcustom",
|
|
"providerprovideradmin",
|
|
"providerserviceuser",
|
|
"accesssecretsmanager",
|
|
"sub",
|
|
"organization"
|
|
],
|
|
"grant_types_supported": [
|
|
"authorization_code",
|
|
"client_credentials",
|
|
"refresh_token",
|
|
"implicit",
|
|
"password",
|
|
"urn:ietf:params:oauth:grant-type:device_code",
|
|
"webauthn"
|
|
],
|
|
"response_types_supported": [
|
|
"code",
|
|
"token",
|
|
"id_token",
|
|
"id_token token",
|
|
"code id_token",
|
|
"code token",
|
|
"code id_token token"
|
|
],
|
|
"response_modes_supported": ["form_post", "query", "fragment"],
|
|
"token_endpoint_auth_methods_supported": [
|
|
"client_secret_basic",
|
|
"client_secret_post"
|
|
],
|
|
"id_token_signing_alg_values_supported": ["RS256"],
|
|
"subject_types_supported": ["public"],
|
|
"code_challenge_methods_supported": ["plain", "S256"],
|
|
"request_parameter_supported": true
|
|
}
|