Comments (3)
stloyd
commented on June 14, 2024
Sounds good for me to include this setting in FB resource owner, feel free to send PR.
from hwioauthbundle.
Seb33300
commented on June 14, 2024
I did some more research on this today:
- Limited Login is only used in some specific scenarios, for instance on iOS if the user click on "Ask App Not to Track" on the consent popup.
- I am still not sure if limited login can be use in web context (looks like it's even not available on Android)
- Limited login is only supported by the OIDC token flow.
The current FacebookResourceOwner implementation is done with the Login flow.
I dont know if facebook has plan to deprecate that login flow in favor of the new OIDC token flow.
But we may need to migrate to OIDC token flow at some point.
from hwioauthbundle.
Seb33300
commented on June 14, 2024
I did some additional test, and it looks like the OIDC token flow is very similar to the classic login flow.
We only need to set the scope param to openid and this can be done in the config file.
From my test, I can use it with the current flow without adding the other required parameters mentioned in the documentation.
Looks like the required parameters are required only if we change the response_type, for instance with id_token to get a JWT.
from hwioauthbundle.
Related Issues (20)
- Has EntityUserProvider ever worked? HOT 1
- [2.x] Resource owner custom logic HOT 3
- symfony 7
- Compliance to digital privacy laws in Germany and the EEA of Identity Authentication for malicious purposes
- 2.x not compatible with \Symfony\Component\Security\Http\Authentication\AuthenticatorManager::authenticateUser HOT 2
- Update Facebook API version HOT 1
- Incorrect provider in docs? HOT 1
- Connect functionality is broken when using authenticators (Symfony 6+)
- Best practice to handle access token for API requests after login HOT 3
- Since 2.2.0 firewalls failure_handler gets overriden HOT 2
- All custom resource owners have the same login_path when setting enable_authenticator_manager to true HOT 4
- User registration if not exist, without filling the form
- Neither the property "username" exist in class "App\Entity\User". HOT 5
- How to disable default login route HOT 1
- Documentation error on state option
- Failure handler not overriding HOT 2
- validate google externally provided id_token? [support question]
- Deprecation message when using it with Symfony 6.4 HOT 1
- windows_live: client ID required in the request made to Microsoft
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from hwioauthbundle.