There are some use-cases where you get sent to an application from an IDP provider. For example, when your Pod provider has a set of recommendations to launch into. In this instance it may be useful to hint the users WebID or IDP provider so that when they log into that application they are sent straight to their IDP provider rather than needing to suggest this.
Concretely, we would implement a #getIssuer method which inspects the current URL an application is at to see if there is #autologin/:webID appended to a URL and if so use the IDP of the WebID to log in.
For reference see the issue that @ylebre raised on NoelDeMartin/media-kraken#54
@ylebre I do wonder if this is the right approach -- could you not bypass all of the redirects by just completing the OIDC flow, i.e. direct straight to the applications log-in URL with an authorisation code.
There are some use-cases where you get sent to an application from an IDP provider. For example, when your Pod provider has a set of recommendations to launch into. In this instance it may be useful to hint the users WebID or IDP provider so that when they log into that application they are sent straight to their IDP provider rather than needing to suggest this.
Concretely, we would implement a
#getIssuermethod which inspects the current URL an application is at to see if there is#autologin/:webIDappended to a URL and if so use the IDP of the WebID to log in.For reference see the issue that @ylebre raised on NoelDeMartin/media-kraken#54
@ylebre I do wonder if this is the right approach -- could you not bypass all of the redirects by just completing the OIDC flow, i.e. direct straight to the applications log-in URL with an authorisation code.