Implement SSO/OIDC support. (closes #7)

Signed-off-by: Jason Volk <jason@zemos.net>
2025-12-23 14:55:29 +00:00
parent d665a34f30
commit 11309062a2
23 changed files with 1959 additions and 27 deletions
--- a/src/service/client/mod.rs
+++ b/src/service/client/mod.rs
@@ -21,6 +21,7 @@ pub struct Service {
 	pub sender: ClientLazylock,
 	pub appservice: ClientLazylock,
 	pub pusher: ClientLazylock,
+	pub oauth: ClientLazylock,

 	pub cidr_range_denylist: Vec<IPAddress>,
 }
@@ -112,6 +113,11 @@ impl crate::Service for Service {
 				.pool_idle_timeout(Duration::from_secs(config.pusher_idle_timeout))
 				.redirect(redirect::Policy::limited(2))),

+			oauth: create_client!(config, services; base(config)?
+				.dns_resolver2(Arc::clone(&services.resolver.resolver))
+				.redirect(redirect::Policy::limited(0))
+				.pool_max_idle_per_host(1)),
+
 			cidr_range_denylist: config
 				.ip_range_denylist
 				.iter()