yogsototh/deft

Yann Esposito (Yogsototh) 7b20389d02

save

2022-11-01 14:52:02 -05:00

942 B

Raw Permalink Blame History

Custom Routes

Reference

tags: cisco
source: https://github.com/advthreat/iroh/issues/5411

Reference

https://github.com/advthreat/iroh/issues/5411

We propose to provide two new endpoints to simplify and standardize this integration system.

POST /iroh/oauth/custom/code that could only called using a user's JWT with the oauth:write scope. Given a client-id it will grant that client (no need to pass via the CSRF token step) and returns a code (directly and not a URL the client would need to parse)
POST /iroh/oauth/custom/tokens that could only be called using a user's JWT with the oauth:write scope.

This route also need a client_id, client_secret. This will grant the client on behalf of the user and returns a classical /token response.