Comments (8)
Before I start on this, what do you think about implementing the plugin architecture as mentioned earlier before doing this?
from oauth2-server-php.
I don't think it will be happening any time soon. Code away!
from oauth2-server-php.
One thing I wouldn't mind seeing is an interface for the ExtensionGrantType
, so JWT and any other types can extend those.
from oauth2-server-php.
@bshaffer Just revisiting this (its been a while!).
Latest spec for JWT is here.
For JWT client authentication, it is basically piggy backing on the authorization_code
grant type. So we can either put the code for that into the AuthorizationCode
grant type or perhaps provide some modular approach.
I personally favour a more modular approach, but am unsure how this can be done. Any ideas 😄 ?
from oauth2-server-php.
Well, I DO like the word "modular" :)
As long as it implements a common interface I am cool with either approach... extending a base class or duplicating the code. Our "built in" JWT client assertion could just extend the AuthorizationCode grant type wholesale.
Honestly, I'd have to wrap my brain around the problem a little more. I will definitely look into it, and offer feedback to any code you submit!
from oauth2-server-php.
I may be missing something, but I believe this is already done. JWTBearer
now implements ClientAssertionTypeInterface
. This means, if we want to use it for client assertions, we just need to pass it in to the TokenController
object when we create it.
There is still the issue that there is no way to pass this in to the Server
class. However, if we add this, we should be good to go.
from oauth2-server-php.
@bshaffer I will have a look at it over the next few days (pretty busy atm) and get back to you 😄
from oauth2-server-php.
Thanks to @bshaffer, ClientAssertionTypeInterface
is implemented, client authentication is now supported. Now, we just need to find a way to pass this to the Server
.
from oauth2-server-php.
Related Issues (20)
- User Credentials grant doesn't verify user_id vs Client Credentials user_id
- Example project is not compatable for php version >= 8.1 HOT 1
- Revoking token
- unable to generate access token
- PKCE Support, please HOT 1
- Integration with Psr\Http\Message\ RequestInterface and ResponseInterface HOT 1
- [QUESTION] OpenID Connect Back-Channel Logout
- Firebase/JWT <6 is considered security risk HOT 6
- Different user database depending on client_id
- Add getToken() to ResourceControllerInterface
- cors issue with authorize.php
- Help with error using JWT?
- Ci4 OAuth2 ACCESS_TOKEN invalid
- No way to distinguish between "invalid" and expired JWT token HOT 8
- Step-by-step Walkthrough not up-to-date HOT 2
- Not possible to inject custom implementation of EncryptionInterface without overriding whole createDefaultIdTokenResponseType() or whole response type
- how do i use cookie
- http://192.168.1.205/authorize.php?response_type=code&client_id=testclient&state=xyz HOT 2
- Device Authorization Grant support
- refresh token
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from oauth2-server-php.