Help with RFC implementation
Hello there!
Currently I'm trying to implement support for RFC-9126 in self-hosted fork of Zitadel to help migration from Keycloak
I'd like some help to understand the best way to implement this one:
1. Add new type of event and all wrapping staff (commands/interfaces etc) for PAR and reuse common event store
2. Try auth_request-like approach with separated cache and Postgres-based storage: OPStorage -> AuthRequesrRepo -> AuthRequestCache
Both can live but after internal discussion with my team I think that second one makes more sense since it'll generate much less useless data in storage since event won't handle any unique data itself
Main problem is that we still not sure if it's a good idea at all to extend existing repos since we'd like to merge our solution to upstream once it'll be done. Some help on this topic will be very helpful
P.S. created issue for more general talk about OAuth2/OIDC extentions: https://github.com/zitadel/zitadel/issues/10164
Currently I'm trying to implement support for RFC-9126 in self-hosted fork of Zitadel to help migration from Keycloak
I'd like some help to understand the best way to implement this one:
1. Add new type of event and all wrapping staff (commands/interfaces etc) for PAR and reuse common event store
2. Try auth_request-like approach with separated cache and Postgres-based storage: OPStorage -> AuthRequesrRepo -> AuthRequestCache
Both can live but after internal discussion with my team I think that second one makes more sense since it'll generate much less useless data in storage since event won't handle any unique data itself
Main problem is that we still not sure if it's a good idea at all to extend existing repos since we'd like to merge our solution to upstream once it'll be done. Some help on this topic will be very helpful
P.S. created issue for more general talk about OAuth2/OIDC extentions: https://github.com/zitadel/zitadel/issues/10164
GitHub
Preflight Checklist I could not find a solution in the existing issues, docs, nor discussions I have joined the ZITADEL chat Describe your problem There are actually a lot of RFCs extending OAuth2 ...
