OAuth scope integration #1

closed

opened by

hexmani.ac 3 months ago

Bluesky is currently pushing out support for the OAuth scope system. Right now only the scopes themselves are available, without the ability to define permission sets yet as well as a lack of proper documentation. As such, it is not recommended for production and only for experimentation. I've pushed a commit that limits our scopes to our lexicon data, however in regards to XRPC permissions the system for defining services via DIDs needs to be implemented in the appview before we switch to using scopes for authentication in the frontend.

Checklist#

Switch from transition:generic to required scopes for data modification (repo, blob)
Figure out how to declare a service endpoint for the appview
Use the appview for XRPC calls in the frontend

Personal link reference

hexmani.ac (author) 3mo ago

DID service proxying is now in place.

hexmani.ac (author) 2mo ago

This is practically complete, the only remaining problem is to implement AppView endpoints that actually can use the proxying.

sign up or login to add to the discussion

Labels

None yet.

assignee

None yet.

Participants 1

AT URI

at://did:plc:5szlrh3xkfxxsuu4mo6oe6h7/sh.tangled.repo.issue/3lwtjg3vi2z22