Implement Authorized Grants for OIDC implementation

alalla · June 7, 2025, 1:28pm

Problem:
Our company uses Ping Federate and implicit grant is not allowed because it is considered insecure by the security team.

Expected outcome:
Backend Idp will allow authentication to proceed.

Foreman and Proxy versions:
v3.12.1

Foreman and Proxy plugin versions:
v3.12.1
Distribution and version:
v3.12.1

Other relevant data:
Error displayed in browser:
OpenID Connect Provider Error: unauthorized_client
implicit+grant+not+allowed+for+this+client

alalla · September 5, 2025, 12:03pm

Hello -
How can I get someone to look into this? This is bubbling up to our Cyber and Leadership teams for remediation.

Is this something the team can prioritize? Or suggest where I can post this elsewhere where it will get the needed attention.

Thanks!