unity-idm-discuss Mailing List for unity-idm (Page 20)

SourceForge Headquarters 1320 Columbia Street Suite 310 San Diego, CA 92101 +1 (858) 422-6466

Good morning Krzysztof,
we have an SP which operates a single page application (SPA) and want
to use PKCE. The browser expect HTTP header "access-control-allow-
origin" to CORS requests, but it seems that unity does not send them:

HTTP/1.1 200 OK
Date: Wed, 03 Nov 2021 08:04:10 GMT
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-Frame-Options: DENY
Allow: POST,GET,OPTIONS,HEAD
Content-Length: 0

After switching the client type to public, because this is the only
section in documentation where PKCE is mentioned the header looks like
this:

Endpoint:
https://login-dev.helmholtz.de/oauth2/token

OPTIONS /oauth2/token HTTP/1.1
Host: login-dev.helmholtz.de
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:91.0) Gecko/20100101
Firefox/91.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Access-Control-Request-Method: POST
Referer: https://rz-vm64.gfz-potsdam.de:3000/
Origin: https://rz-vm64.gfz-potsdam.de:3000
DNT: 1
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache

Is PKCE already fully supported in unity? Do we need to do some further
configuration to allow PKCE for this client?

Best regards,
Sander
-- 
Federated Systems and Data
Juelich Supercomputing Centre

phone: +49 2461 61 8847
fax: +49 2461 61 6656
email: sa....@fz...

-----------------------------------------------------------------------
-----------------------------------------------------------------------
Forschungszentrum Juelich GmbH
52425 Juelich
Sitz der Gesellschaft: Juelich
Eingetragen im Handelsregister des Amtsgerichts Dueren Nr. HR B 3498
Vorsitzender des Aufsichtsrats: MinDir Volker Rieke
Geschaeftsfuehrung: Prof. Dr.-Ing. Wolfgang Marquardt (Vorsitzender),
Karsten Beneke (stellv. Vorsitzender), Dr. Astrid Lambrecht,
Prof. Dr. Frauke Melchior
-----------------------------------------------------------------------
-----------------------------------------------------------------------

2014	Jan (3)	Feb (1)	Mar	Apr (1)	May	Jun	Jul (2)	Aug (2)	Sep	Oct (3)	Nov	Dec (1)
2015	Jan (20)	Feb (3)	Mar	Apr	May	Jun (15)	Jul (1)	Aug (7)	Sep (13)	Oct (2)	Nov (10)	Dec (1)
2016	Jan	Feb (2)	Mar	Apr (2)	May (1)	Jun	Jul (1)	Aug (2)	Sep (11)	Oct (7)	Nov (6)	Dec (11)
2017	Jan (10)	Feb (5)	Mar (27)	Apr (34)	May (25)	Jun (14)	Jul (7)	Aug (17)	Sep (11)	Oct (6)	Nov (14)	Dec (10)
2018	Jan (8)	Feb (19)	Mar (40)	Apr (9)	May (16)	Jun (23)	Jul (31)	Aug (7)	Sep (9)	Oct (6)	Nov (14)	Dec (19)
2019	Jan (4)	Feb (6)	Mar (1)	Apr (2)	May (6)	Jun (3)	Jul	Aug	Sep	Oct (2)	Nov (19)	Dec (14)
2020	Jan (10)	Feb (24)	Mar (49)	Apr (26)	May (12)	Jun (4)	Jul (13)	Aug (32)	Sep (13)	Oct (10)	Nov (4)	Dec (16)
2021	Jan (2)	Feb (8)	Mar (15)	Apr (19)	May (5)	Jun (13)	Jul (6)	Aug (38)	Sep (11)	Oct (18)	Nov (11)	Dec (13)
2022	Jan (10)	Feb (21)	Mar (28)	Apr (3)	May (7)	Jun (9)	Jul (14)	Aug (13)	Sep (8)	Oct (29)	Nov (1)	Dec (21)
2023	Jan (19)	Feb (9)	Mar	Apr (10)	May (7)	Jun (10)	Jul (14)	Aug (17)	Sep (1)	Oct (9)	Nov (5)	Dec (14)
2024	Jan (12)	Feb (2)	Mar (8)	Apr (1)	May (6)	Jun (6)	Jul (24)	Aug (15)	Sep (1)	Oct (6)	Nov (20)	Dec (14)
2025	Jan (12)	Feb (2)	Mar (10)	Apr (11)	May (13)	Jun (1)	Jul (2)	Aug (2)	Sep (8)	Oct	Nov	Dec

unity-idm-discuss Mailing List for unity-idm (Page 20)

Identity management and federations integration

unity-idm-discuss — Unity discussion and support