mirror of
https://github.com/logto-io/logto.git
synced 2025-03-24 22:41:28 -05:00
32df9acde3
* chore: add changeset files for IdP feature add changeset files for IdP feature * refactor: apply suggestions from code review --------- Co-authored-by: Gao Sun <gao@silverhand.io>
1.6 KiB
1.6 KiB
| @logto/core |
|---|
| minor |
implement Logto core API to support the new third-party application feature, and user consent interaction flow
Management API
- Add new endpoint
/applications/sign-in-experienceswithPUT,GETmethods to manage the application level sign-in experiences. - Add new endpoint
/applications/:id/users/:userId/consent-organizationswithPUT,GET,POST,DELETEmethods to manage the user granted organizations for the third-party application. - Add new endpoint
/applications/:id/user-consent-scopeswithGET,POST,DELETEmethods to manage the user consent resource, organization, and user scopes for the third-party application. - Update the
/applicationsendpoint to include the newis_third_partyfield. Support create third-party applications, and query byis_third_partyfield.
Interaction API
- Add the
koaAutoConsentto support the auto-consent interaction flow for the first-party application. If is the first-party application we can auto-consent the requested scopes. If is the third-party application we need to redirect the user to the consent page to get the user consent manually. - Add the
GET /interaction/consentendpoint to support fetching the consent context for the user consent page. Including the application detail, authenticated user info, all the requested scopes and user organizations info (if requested scopes include the organization scope). - Update the
POST /interaction/consentendpoint to support the user consent interaction flow. Including grant all the missing scopes, and update the user granted organizations for the third-party application.