A modern programming language that makes developers happier.

kotlinlang

Hey, does anyone have any idea how I can get my plugin to use oAuth with a third party provider without having them to type their password for that third party provider? Ideally, a browser can be opened to a backend service, but I'd need to create a custom protocol handler and I'm wondering if there are examples anyone is aware of that another plugin has used for that? Is there a way to pass information to the plugin through an existing intelliJ protocol handler?

What I have ended up doing is passing a public key to a backend service with the oauth start, the backend service authenticates and the plugin then requests an access token passing its public key again, and the backend service responds with an access token encrypted for that public key if it matches the one in the first request. I am nervous to do it this way though because I'm not familiar with anything else that takes a similar approach and that's usually not a good sign security wise :sweat_smile: