Oauth2 provider that connects to MT auth DB via SRP #4906
Labels
No Label
1. kind/balancing
1. kind/breaking
1. kind/bug
1. kind/construction
1. kind/documentation
1. kind/enhancement
1. kind/griefing
1. kind/invalid
1. kind/meme
1. kind/node limit
1. kind/other
1. kind/protocol
2. prio/controversial
2. prio/critical
2. prio/elevated
2. prio/good first issue
2. prio/interesting
2. prio/low
3. source/art
3. source/client
3. source/engine
3. source/ingame
3. source/integration
3. source/lag
3. source/license
3. source/mod upstream
3. source/unknown
3. source/website
4. step/approved
4. step/at work
4. step/blocked
4. step/discussion
4. step/help wanted
4. step/needs confirmation
4. step/partially fixed
4. step/question
4. step/ready to deploy
4. step/ready to QA test
4. step/want approval
5. result/cannot reproduce
5. result/duplicate
5. result/fixed
5. result/maybe
5. result/wontfix
ugh/petz
ugh/QA main
ugh/QA NOK
ugh/QA OK
No Milestone
No project
No Assignees
3 Participants
Notifications
Due Date
No due date set.
Dependencies
No dependencies set.
Reference: your-land/bugtracker#4906
Loading…
Reference in New Issue
No description provided.
Delete Branch "%!s(<nil>)"
Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?
In the beginning, we only had gitea as a secondary system, whoever wanted to take part there had to make another account. Now there's a demand to have a forum, a wiki and possibly more adjacent services like pasteboard or image/skin upload.
Let's have an oauth2 provider that connects to MT auth DB via SRP. Musthaves:
A possible candidate is this, even though its on docker and currently lacks a license:
https://github.com/minetest-go/mtauth
i can take a look at this at some point. i've set up a couple SAML instances (before OAuth existed), and could probably learn what's needed and give advice.
This is an example of how SRP can be checked in C
https://github.com/est31/csrp-gmp/blob/master/test_srp.c
There is some weird and old documentation here:
https://doxy.minetest.net/srp_8cpp.html
The minetest dev wiki only has limited info, but still some:
https://dev.minetest.net/Engine/Network_Protocol#Authentication_since_protocol_25
That's how MT does it:
https://github.com/minetest/minetest/blob/master/src/util/srp.h
This si said to be a mt_auth implementation for use by outside services:
https://gitea.your-land.de/your-land/mt_auth
also
https://github.com/minetest/minetest/blob/master/src/util/srp.cpp
picking an extensible oath2 provider is probably the first step.
srp should not bet too hard to implement given the right primitives and the existing documentation and implementations.