Draft: Proof of concept: Web IDE oAuth flow (!129038) · Merge requests · GitLab.org / GitLab

Enrique Alcántara requested to merge poc-web-ide-oauth-controller into master Aug 10, 2023

What does this MR do and why?

This is a proof of concept to demonstrate the implementation of an OAuth-based authentication and authorization flow for the Web IDE. This proof of concept relies on creating an instance-wide OAuth application to bypass the user authorization step required by OAuth PCKE flow.

We are validating this authentication strategy as part two efforts in the Web IDE:

Removing mediator commands.
Enabling settings sync in the Web IDE.

See [Investigate] Persisting Web IDE user settings ... (#415700 - closed) for more information.

Screenshots or screen recordings

Screenshots are required for UI changes, and strongly recommended for all other merge requests.

Before	After

How to set up and validate locally

Numbered steps to set up and validate the change are strongly suggested.

MR acceptance checklist

This checklist encourages us to confirm any changes have been analyzed to reduce risks in quality, performance, reliability, security, and maintainability.

I have evaluated the MR acceptance checklist for this MR.

Edited Aug 11, 2023 by Enrique Alcántara

Draft: Proof of concept: Web IDE oAuth flow

What does this MR do and why?

Screenshots or screen recordings

How to set up and validate locally

MR acceptance checklist

Merge request reports