这是indexloc提供的服务,不要输入任何密码
Skip to content

Enable pkce workflow for oauth2 authentication #8940

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 10 commits into from
Jul 15, 2025
Merged

Enable pkce workflow for oauth2 authentication #8940

merged 10 commits into from
Jul 15, 2025

Conversation

@albundy83
Copy link
Contributor

@albundy83 albundy83 commented Jul 10, 2025

A simple way to enable PKCE secure workflow.

I also imagine to totally overwrite client_kwargs parameters by passing a OAUTH2_CLIENT_KWARGS parameter.
Or even just pass a OAUTH2_PKCE that will enable a new client_kwargs with code_challenge_method and response_type correctly set.

albundy83 added 5 commits July 10, 2025 20:32
@albundy83
Enable pkce workflow for oauth2 authentication
ebe4817 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83
Fix for dots
0dea88e 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83
Doc
88aa526 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83
Fix for lines too lond and white spaces
ac9b1ad 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83
Fix for [E125]
322b8c5 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83 albundy83 mentioned this pull request Jul 11, 2025
Closed
khushboovashi
khushboovashi requested changes Jul 14, 2025
View reviewed changes
Copy link
Contributor

@khushboovashi khushboovashi left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The code looks good to me. Please add test cases for the same.
Reference: pgadmin/browser/tests/test_oauth2_with_mocking.py

Have you been able to test the code manually?

@albundy83
Copy link
Contributor Author

albundy83 commented Jul 14, 2025

Yes, I have deployed it in Kubernetes using pgadmin release 9.5 and I have overridden oauth2.py using a configMap, it works perfectly :)
I will try to add tests, I will use link from here as inspiration.

albundy83 added 4 commits July 14, 2025 11:50
@albundy83
Merge branch 'master' into pkce_support
0c335a1
@albundy83
Try to add pkce tests and fix some inconsistencies
695f5a1 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83
79 is the limit
a53670c 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83
79 is the limit
d9e91d5 
Signed-off-by: Grégoire Bellon-Gervais <gregoire.bellon-gervais@docaposte.fr>
@albundy83 albundy83 requested a review from khushboovashi July 14, 2025 17:27
@khushboovashi khushboovashi merged commit 13ade4c into pgadmin-org:master Jul 15, 2025
32 checks passed
@albundy83 albundy83 deleted the pkce_support branch July 15, 2025 06:53
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@khushboovashi khushboovashi Awaiting requested review from khushboovashi

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@albundy83 @khushboovashi