The goal of this project is to develop a standards compliant OAuth 2 authentication server and resource server.
The framework is provided as a Composer package which can be installed by adding the package to your composer.json file:
{
"require": {
"lncd/OAuth2": "*"
}
}The library features 100% unit test code coverage. To run the tests yourself run phpunit -c build/phpunit.xml.
The authentication server is a flexible class and following core specification grants are implemented:
- authentication code (section 4.1)
- refresh token (section 6)
- client credentials (section 2.3.1)
- password (user credentials) (section 4.3)
The resource server allows you to secure your API endpoints by checking for a valid OAuth access token in the request and ensuring the token has the correct permission to access resources.
- Support for JSON web tokens.
- Support for SAML assertions.
This code will be developed as part of the Linkey project which has been funded by JISC under the Access and Identity Management programme.
This code was principally developed by Alex Bilbie (Twitter|Github).
Valuable contribtions have been made by the following: