-
Hey i have a question, i want access to my oauth secure route without access_token but without access_token how can i do that ?
It s for a partner, i dont want that they have to login an user accou…
Noido updated
5 years ago
-
After looking through a few places the available flows validation seems to be missing:
```
option :allow_grant_flow_for_client, default: ->(_grant_flow, _client) { true }
```
From the clie…
yoda updated
11 months ago
-
###### Environment
- lua-resty-openidc version (e.g. 1.7.0)
- OpenID Connect provider (e.g. Keycloak, Azure AD)
###### Expected behaviour
In simple version:
1. Config: `opts.token_endpoin…
-
## Oauth2
#### OAuth(Open Authorization)란?
인터넷 사용자들이 비밀번호를 제공하지 않고 다른 웹사이트 상의 자신들의 정보에 대해 웹사이트나 애플리케이션의 접근권한을 부여할수 있는 공통적인 수단. 접근 위임을 위한 개방형 표준.
ex) Authorization Code Grant(일반적인 소셜로그인)
A …
-
Hi, i followed this tutorial from http://bshaffer.github.io/oauth2-server-php-docs/cookbook/ and everything okey. but, yesterday, i'm got error " 'error' => string 'invalid_grant'
'error_description…
-
This proposal is to support private_key_jwt client authentication method in x/oauth2 package. Details of this method are at https://openid.net/specs/openid-connect-core-1_0.html#ClientAuthenticati…
-
## Purpose of the feature (why)
Openshift provides a partial OpenID server for the builtin user authentication.
Unlike any other OIDC server, the .well-known URL of Openshift builtin oauth server …
-
E.g. LinkedIn OAuth doesn't send the `token_type` in the response.
https://learn.microsoft.com/en-us/linkedin/shared/authentication/authorization-code-flow?tabs=HTTPS1#response
Thus the getToken f…
-
## CVE-2019-3778 - Medium Severity Vulnerability
Vulnerable Library - spring-security-oauth2-2.2.1.RELEASE.jar
Module for providing OAuth2 support to Spring Security
Library home page: http://static…
-
I am testing github integration for several Autolab courses. Autolab is latest -- v2.12.0.
Docs claim a minimal set of permissions:
> Git Submission works by having students performing OAuth wi…