12/20/2024

• Epic SI-13: Add SCIM server functionality to OpenProject via SCIM API
  updated by Jan Sandbrink on 12/20/2024 02:14 PM
  • Description changed (Details)
• Feature SI-14: Extend Nextcloud files storage to use OIDC access tokens
  updated by Jan Sandbrink on 12/20/2024 01:56 PM
  • Description changed (Details)
• Feature SI-10: File storages settings for type Nextcloud: Allow OIDC based connection instead of OAuth2
  updated by Jan Sandbrink on 12/20/2024 01:37 PM
  • Description changed (Details)
• Feature SI-47: Indicate usability of IDP tokens & provider during storage setup
  updated by Jan Sandbrink on 12/20/2024 01:32 PM
  • Comment added

    Dominic Bräunlein Parimal Satyal: Can we (probably in the new year) sit together to talk about this feature?
    I believe i...

  • Description changed (Details)
  • Status changed from new to in specification
• Open Point SI-40: Should the authentication method be in the first section or have it's own section like in the Nextcloud side
  updated by Jan Sandbrink on 12/20/2024 01:23 PM
  • Comment added

    Hey Dominic Bräunlein Parimal Satyal: What do we need to come to a decision on this open point?
    If you were to ask me, m...

12/19/2024

• Feature SI-47: Indicate usability of IDP tokens & provider during storage setup
  updated by Jan Sandbrink on 12/19/2024 03:51 PM
  • Subject changed from Give IDP token feedback during setup to Indicate usability of IDP tokens & provider during storage setup
  • Description changed (Details)
• Feature SI-51: Indicate usability of OIDC provider during storage setup
  created by Jan Sandbrink on 12/19/2024 03:51 PM
  • Comment added

    Included this in the existing validation feature SI-47.

• Open Point SI-50: How to deal with expired refresh tokens?
  created by Jan Sandbrink on 12/19/2024 03:43 PM
• Feature SI-14: Extend Nextcloud files storage to use OIDC access tokens
  updated by Jan Sandbrink on 12/19/2024 03:43 PM
  • Description changed (Details)
• Implementation SI-46: Allow configuration of new authentication method through UI
  updated by Jan Sandbrink on 12/19/2024 03:27 PM
  • Subject changed from Allow user to select authentication preference in UI to Allow configuration of new authentication method through UI
• Open Point SI-49: Is it necessary to create a link between storage and OpenIDConnect provider?
  created by Jan Sandbrink on 12/19/2024 03:16 PM
  • Comment added

    One point brought up by Wieland was:
    I see one advantage of know with which IdP it should work: You could tell the user...

• Feature SI-10: File storages settings for type Nextcloud: Allow OIDC based connection instead of OAuth2
  updated by Jan Sandbrink on 12/19/2024 03:15 PM
  • Description changed (Details)
• Feature SI-10: File storages settings for type Nextcloud: Allow OIDC based connection instead of OAuth2
  updated by Jan Sandbrink on 12/19/2024 11:58 AM
  • Comment added

    You bring up a good point here, that we will need to consider. Useful error messages for end users. I already created SI...

• Bug SI-24: User details (name and email) set by login provider can be edited
  updated by Wieland Lindenthal on 12/19/2024 11:22 AM
  • Comment added

    Hmm, there is a bigger UX issue hidden in this BUG. Most of the time, when people sign in via SSO it is bad practice if ...

  • Status changed from rejected to needs clarification
• Feature SI-10: File storages settings for type Nextcloud: Allow OIDC based connection instead of OAuth2
  updated by Wieland Lindenthal on 12/19/2024 11:11 AM
  • Comment added

    Jan Sandbrink I see one advantage of know with which IdP it should work: You could tell the user the reason why she cann...

• Feature SI-4: Quick OAuth configuration flow for mobile app
  updated by Jens Ulferts on 12/19/2024 10:37 AM
  • Comment added

    With the feature freeze being imminent, I believe this needs to be rescheduled.

  • Version changed from 15.2.0 to Product Backlog
• Feature SI-47: Give IDP token feedback during setup
  updated by Jan Sandbrink on 12/19/2024 09:41 AM
  • Description changed (Details)
• Epic SI-2: Seamless integration of user sessions of Nextcloud and OpenProject using OIDC & JWTs
  updated by Jan Sandbrink on 12/19/2024 09:32 AM
  • Description changed (Details)

12/18/2024

• Epic SI-2: Seamless integration of user sessions of Nextcloud and OpenProject using OIDC & JWTs
  updated by Jan Sandbrink on 12/18/2024 04:04 PM
  • Subject changed from Seamless integration of user sessions of Nextcloud and OpenProject using OIDC (Keycloak) to Seamless integration of user sessions of Nextcloud and OpenProject using OIDC & JWTs
  • Description changed (Details)
• Feature SI-39: Store token exchange capability on OIDC providers
  updated by Jan Sandbrink on 12/18/2024 01:53 PM
  • Comment added

    Moved this out to 15.3, because the functionality is still hidden behind a feature flag that we will not lift for 15.2 (...

  • Version changed from 15.2.0 to 15.3.0

12/17/2024

• Implementation SI-48: Allow to discover additional audiences of a token
  updated by Jan Sandbrink on 12/17/2024 10:08 AM
  • Status changed from in development to needs review
  • Assignee deleted (Jan Sandbrink)

12/16/2024

• Implementation SI-33: Save OIDC tokens to OpenProject database
  updated by Bruno Pagno on 12/16/2024 01:21 PM
  • Assignee deleted (Andreas Pfohl)
• Feature SI-39: Store token exchange capability on OIDC providers
  updated by Eric Schubert on 12/16/2024 11:45 AM
  • Assignee deleted (Andreas Pfohl)
• Feature SI-39: Store token exchange capability on OIDC providers
  updated by GitHub ⁤ on 12/16/2024 11:15 AM
  • Comment added

    opf/openproject#17376 deployed to qa.openproject-edge.com

• Feature SI-39: Store token exchange capability on OIDC providers
  updated by Jan Sandbrink on 12/16/2024 10:35 AM
  • Status changed from needs review to merged
• Feature SI-39: Store token exchange capability on OIDC providers
  updated by GitHub ⁤ on 12/16/2024 10:34 AM
  • Comment added

• Implementation SI-48: Allow to discover additional audiences of a token
  updated by GitHub ⁤ on 12/16/2024 10:30 AM
  • Comment added