search

IdentityServer / IdentityServer3

OpenID Connect Provider and OAuth 2.0 Authorization Server Framework for ASP.NET 4.x/Katana
https://identityserver.github.io/Documentation/
Apache License 2.0
2.01k stars 764 forks source link

Question: How to validate access token? #1513

Closed pavanputhra closed 9 years ago

pavanputhra commented 9 years ago

The framework which am using to write REST API doesn't have library to validate OAuth tokens.

Could you please tell me the algorithm to validate token, so that I can write my own validation code?

leastprivilege commented 9 years ago

You either need a JWT library - and they are available for pretty much any platform...or you can use the access token validation endpoint (check the docs).

pavanputhra commented 9 years ago

I got some JWT library for Meteor.js framework, which supports following alogrithms HS256, HS384, HS512 and RS256.

Which one does identity server uses?

leastprivilege commented 9 years ago

RS256