feat: fix OIDC auth flow, improve config dialogs, add mock IdP

- Fix OIDC callback to extract email from ID token claims as fallback - Add /auth/complete bridge page to transfer auth to NiceGUI storage - Use window.location.href for OIDC login (full navigation for OAuth) - Hide password change card for OIDC-only users - Widen config dialog, use ui.code with syntax highlighting - Switch QR codes to PNG base64 images - Rename logging.py to log_config.py to avoid stdlib shadow - Add mock-oauth2-server to compose.yml for dev/testing
2026-03-31 14:28:34 -05:00 · 2026-03-31 14:28:34 -05:00 · 2163c89b6a
commit 2163c89b6a
parent 4d7a4810ff
7 changed files with 151 additions and 65 deletions
--- a/compose.yml
+++ b/compose.yml
@ -17,6 +17,38 @@ services:
    volumes:
      - valkey_data:/data

+  # Test OIDC Identity Provider — accepts any login, issues real JWTs
+  # Discovery: http://localhost:9000/test-idp/.well-known/openid-configuration
+  # Login: enter any username/password, it will issue a token
+  mock-oidc:
+    image: ghcr.io/navikt/mock-oauth2-server:2.1.10
+    ports:
+      - "9000:9000"
+    environment:
+      SERVER_PORT: "9000"
+      JSON_CONFIG: >
+        {
+          "interactiveLogin": true,
+          "httpServer": "NettyWrapper",
+          "tokenCallbacks": [
+            {
+              "issuerId": "test-idp",
+              "tokenExpiry": 3600,
+              "requestMappings": [
+                {
+                  "requestParam": "scope",
+                  "match": "*",
+                  "claims": {
+                    "sub": "$${claim:sub}",
+                    "email": "$${claim:sub}@test.local",
+                    "name": "Test User"
+                  }
+                }
+              ]
+            }
+          ]
+        }
+
 volumes:
  postgres_data:
  valkey_data: