-
Notifications
You must be signed in to change notification settings - Fork 53
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Wave app with JWT authentication #118
Conversation
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Wow, great job @aranvir! Seems like a great topic for a blog post either.
- Let's add a link to the official OIDC wave docs to make it clear this is communnity-driven effort.
- The hash can be currently manipulated via custom JS only.
- What is the beauty issue you mentioned? Centering the login form? If so, you may give a
justify
/align
attributes onui.zone
a try.
@mturoci thanks!
|
Agree that Keycloak is a better option here. However, your tutorial is also nice and straightforward so could be a good reference for people who still want to roll their own mechanism.
This means one needs to use https://wave.h2o.ai/docs/javascript/ to change the hash route programatically. |
@mturoci inline script did the trick for manipulating the path! Also updated the readme to recommend OpenID Connect over this solution. Now it should be good to go :) |
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Perfect, LGTM. Thanks @aranvir!
Hi, Thank you so much for the example app. I might have found a issue.
My setup Ubuntu 22.04, Python 3.10.12, wave v1.0 and bcrypt v4.0.1 |
Hi @HugoP thanks for the interest! I think I did fix it in a private project but I have not yet come around to update the example code here as well. Maybe I find some time on a weekend soon ;) (or can at least provide snippets for you to fix it yourself) |
Hi @aranvir thanks for the quick reply. Any help will be much appreciated. Keep well :-) |
Since OpenID Connect is currently not working for me (h2oai/wave#1924) and I also disliked my reverse proxy solution (h2oai/wave#1940), I wanted to try and see if I can add JWT based authentication to a wave app.
I think I came up with a quite decent and easy to use implementation so I wanted to share it with others. Check the readme for more details.
There is at least one small "beauty issue" that I've not been able to solve. And tbh I don't know if this implementation can be considered safe (enough), or if there are some failure points that should be fixed or at least informed about.
Let me know what you think!