From 304d6f61e7a692d1b78f14b71fb14acfcac571ca Mon Sep 17 00:00:00 2001 From: Bobby Rullo Date: Tue, 29 Dec 2015 16:04:49 -0800 Subject: [PATCH] Documentation: dex roadmap --- Documentation/roadmap.md | 17 +++++++++++++++++ 1 file changed, 17 insertions(+) create mode 100644 Documentation/roadmap.md diff --git a/Documentation/roadmap.md b/Documentation/roadmap.md new file mode 100644 index 00000000..181f388b --- /dev/null +++ b/Documentation/roadmap.md @@ -0,0 +1,17 @@ +# dex Roadmap + +Here's some of the things that are priorities for the folks working on dex here at CoreOS. + +## OpenID Connect Client Self-Registation + +Having clients be able to [register themselves](https://openid.net/specs/openid-connect-registration-1_0.html) and manage their own secrets and metadata will be extremely helpful in bootstrapping situations. + +## Refresh Tokens + +We currently have refresh tokens implemented as per the OpenID Connect core spec, but we have no way to revoke them. We will probably implement the [OAuth2 token revocation spec](https://tools.ietf.org/html/rfc7009) and/or a UI for revocation. + +## Groups + +We want to add support to dex for managing and querying groups of users. The idea is that this will serve as the building blocks for creating authorization systems which use dex. [The proposal](https://docs.google.com/document/d/1OCKW-8rBCngBFWMMrSGokKqWt-a8lg3WvfrejcETBMA/edit#heading=h.9kkruegwavaf) is mostly settled but still should be considered a Work in Progress. + +