vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
-
Updated
Mar 27, 2024 - JavaScript
vulnerable OAuth 2.0 applications: understand the security implications of your OAuth 2.0 decisions.
Working oauth2 server with minimal configuration
A web application that sync's data from the Microsoft Graph using the identity of the application, instead of on behalf of a user.
Spring Boot 2.1.x OAuth2 JWT Authorization server with Database (JPA, Hibernate, PostgreSQL, Liquibase)
A Node.js console daemon application secured by MSAL Node and calling Microsoft Graph API via OAuth 2.0 client credentials flow
Client Credentials Flow with Spring Security
Demonstrates how to manage Azure AD B2C users via Microsoft Graph using MSAL.js and MSAL Node.
Sample RestTemplate Client with Spring Security Oauth2 with client_credentials flow
Code demo repo for my Beyond Passwords talk
1.扩展实现了SpringSecurity-OAuth2-Authorization-Server认证服务,支持自定义表结构,并扩展支持了OAuth2 Client Credential模式下的JwtToken刷新,兼容支持JDK 1.8; 2.对报文做了缓存和耗时记录,并贯穿了链路追踪ID,基本上可以达到开箱即用; 3.整合了docker脚本和docker-compose两种方式,可以非常方便地构建docker集群(目前只验证了MacOS);
Node API with OAuth 2.0 Client Credentials Flow using Okta
A Spring Boot Rest Reference Implementation. The API is secured using OpenId Client Credentials. KeyCloak is the OpenId Connect Identity Provider used to secured the API
https://github.com/udhos/oauth2 implements the oauth2 client_credentials flow with singleflight and plugable cache interface.
Utility to retrieve access token from OAuth2.0 Server or Security Token Service (STS) using Client Credentials grant type.
Solid authentication with client credentials in python
Client that uses OAuth client_credentials flow to get a JWT and use it for permissions to call REST endpoint.
API authentication proxy, able to handle both the client and server side concerns of the OAuth Client Credentials flow by operating in forward and reverse proxy modes.
groupcache_oauth2 implements the oauth2 client_credentials flow cacheing tokens with groupcache.
HelseID Java client including PAR (Pushed Authorization Requests) and DPoP
Creates and setups pre-configured axios clients, using OAuth 2.0 workflow(s).
Add a description, image, and links to the client-credentials topic page so that developers can more easily learn about it.
To associate your repository with the client-credentials topic, visit your repo's landing page and select "manage topics."