Make our datumctl oauth dialog work outside of the local machine

[drewr]

When you call datumctl auth login, you need to visit a URL like this in a browser:

https://auth.datum.net/oauth/v2/authorize?client_id=SECRET&code_challenge=UhXCJ7Qmd1zjUuzouHY70ex2jIgtuCLe02edVmeB-Hs&code_challenge_method=S256&redirect_uri=http%3A%2F%2F127.0.0.1%3A35169%2Fdatumctl%2Fauth%2Fcallback&response_type=code&scope=openid+profile+email+offline_access&state=wc8QI6VTJMQfOyI6SbQ9HGBeFrbIjRIai7J4od_O4WY

The http%3A%2F%2F127.0.0.1%3A35169 in there is problematic because if you're on a remote machine or VM there isn't a localhost service to call back too. You'd either have to use a remote browser, or tunnel localhost back to the VM. Though the second option will be much easier when we get our tunnels operational, we should look at how much effort is involved in generating a code that can be pasted back into the terminal, the same way that GitHub, gcloud, and other CLIs work.

[gianarb]

Hello @drewr ! I am working at it. Currently, I am blocked by custom login page not correctly handling this use case, the Zitadel default page works. Feel free to assign this enhancement to me.

datum-cloud/datumctl#105

I opened this issue to track the custom login problem datum-cloud/auth-ui#54 not sure how to move from here it is a bit complicated from where I am to update and properly test auth-ui. @scotwells has this item in its to-do list to figure out how to move it forward.

[jacobsmith928]

@JoseSzycho for visibility in case you have some insight on the blocker!