Land support for multiple OIDC providers (#9110)
This is the final step for supporting multiple OIDC providers concurrently.
First of all, we reorganise the config so that you can specify a list of OIDC providers, instead of a single one. Before:
oidc_config:
enabled: true
issuer: "https://oidc_provider"
# etc
After:
oidc_providers:
- idp_id: prov1
issuer: "https://oidc_provider"
- idp_id: prov2
issuer: "https://another_oidc_provider"
The old format is still grandfathered in.
With that done, it's then simply a matter of having OidcHandler instantiate a new OidcProvider for each configured provider.
Showing
- changelog.d/9110.feature 1 addition, 0 deletionschangelog.d/9110.feature
- docs/openid.md 104 additions, 97 deletionsdocs/openid.md
- docs/sample_config.yaml 141 additions, 133 deletionsdocs/sample_config.yaml
- synapse/config/cas.py 1 addition, 1 deletionsynapse/config/cas.py
- synapse/config/oidc_config.py 187 additions, 142 deletionssynapse/config/oidc_config.py
- synapse/handlers/oidc_handler.py 20 additions, 7 deletionssynapse/handlers/oidc_handler.py
- tests/handlers/test_oidc.py 2 additions, 2 deletionstests/handlers/test_oidc.py
Loading
Please register or sign in to comment