Implemented new OIDC redirect behavior (#954)

2025-07-04 01:22:50 -05:00 · 2020-09-29 17:06:17 -04:00
parent 8f7389f153
commit 3b8cbe631f
7 changed files with 37 additions and 3 deletions
--- a/src/Core/Models/Data/SsoConfigurationData.cs
+++ b/src/Core/Models/Data/SsoConfigurationData.cs
@ -1,6 +1,7 @@
 using System;
 using Bit.Core.Enums;
 using Bit.Core.Sso;
+using Microsoft.AspNetCore.Authentication.OpenIdConnect;

 namespace Bit.Core.Models.Data
 {
@ -17,6 +18,7 @@ namespace Bit.Core.Models.Data
        public string ClientId { get; set; }
        public string ClientSecret { get; set; }
        public string MetadataAddress { get; set; }
+        public OpenIdConnectRedirectBehavior RedirectBehavior { get; set; } = OpenIdConnectRedirectBehavior.FormPost;
        public bool GetClaimsFromUserInfoEndpoint { get; set; }

        // SAML2 IDP
--- a/src/Core/Resources/SharedResources.en.resx
+++ b/src/Core/Resources/SharedResources.en.resx
@ -526,4 +526,17 @@
  <data name="UserAlreadyExistsUseLinkViaSso" xml:space="preserve">
    <value>User already exists, please link account to SSO after logging in</value>
  </data>
+  <data name="RedirectGet" xml:space="preserve">
+    <value>Redirect GET</value>
+    <comment>An OIDC Connect Redirect Behavior, Redirect; Emits a 302 response 
+    to redirect the user agent to the OpenID Connect provider using a GET request.</comment>
+  </data>
+  <data name="FormPost" xml:space="preserve">
+    <value>Form POST</value>
+    <comment>An OIDC Connect Redirect Behavior, Form POST; Emits an HTML form to
+      redirect the user agent to the OpenID Connect provider using a POST request.</comment>
+  </data>
+  <data name="RedirectBehavior" xml:space="preserve">
+    <value>OIDC Redirect Behavior</value>
+  </data>
 </root>