On Mon, Dec 5, 2022 at 12:48 PM Frantisek Zatloukal <fzatlouk(a)redhat.com> wrote:
\o/,
I'd like to ask if there is anybody familiar with the state of flask-oidc? It's
been long-time broken with the latest itsdangerous, which was recently bumped in Rawhide,
which broke all the applications using flask-oidc from Fedora repositories (
https://bugzilla.redhat.com/show_bug.cgi?id=2150955 ).
There is an upstream PR against flask-oidc changing itsdangerous to pyJWT:
https://github.com/puiterwijk/flask-oidc/pull/144 (which, according to my previous
testing, makes the trouble go away). Can somebody take a look at it, and merge/release a
new fixed version? I can handle pyJWT packaging in Fedora if this is the way forward.
On a similar note, is the flask-oidc library the way to connect to FAS login for python
applications? I had an impression that apps should migrate to this from plain openid (and
I am planning to handle the transition of remaining Fedora QA apps). It seems abandoned
upstream, so should the devs of python/flask apps use some other lib/way?
Thanks a lot upfront!
There was an attempt to do something about this:
https://github.com/fedora-infra/flask-oidc
But it also seemingly died.
--
真実はいつも一つ!/ Always, there's only one truth!