mbilski
Repos
31
Followers
16
Following
5

Automatic siren encoder and decoder derivation with shapeless

4
0

Quorum split brain resolver for static akka cluster

100
19

Events

Make serialize and loadDocument public functions

Created at 3 days ago
delete branch
mbilski delete branch feature/tests
Created at 2 weeks ago

Add tests (#16)

Created at 2 weeks ago
pull request closed
Add tests
Created at 2 weeks ago

Move all down

Created at 2 weeks ago
pull request opened
Add tests
Created at 2 weeks ago
create branch
mbilski create branch feature/tests
Created at 2 weeks ago
opened issue
Encrypted Request Object

https://openid.net/specs/openid-connect-core-1_0.html#JWTRequests

Created at 2 weeks ago
opened issue
Signed Request Object

https://openid.net/specs/openid-connect-core-1_0.html#JWTRequests

Created at 2 weeks ago
opened issue
Request Object

https://openid.net/specs/openid-connect-core-1_0.html#JWTRequests

Created at 2 weeks ago
opened issue
JARM

https://openid.net/specs/openid-financial-api-jarm.html

Created at 2 weeks ago
opened issue
CIBA

https://cloudentity.com/developers/basics/oauth-grant-types/ciba-flow/

Created at 2 weeks ago
opened issue
Device Flow

https://cloudentity.com/developers/basics/oauth-grant-types/device/

Created at 2 weeks ago
opened issue
Pushed Authorization Requests

https://cloudentity.com/developers/basics/oauth-grant-types/pushed-authorization-requests/

Created at 2 weeks ago
opened issue
Token exchange

https://cloudentity.com/developers/basics/oauth-grant-types/token-exchange/

Created at 2 weeks ago

Add downloads badge

Merge branch 'master' of github.com:cloudentity/oauth2c

Created at 2 weeks ago

codeql

Created at 2 weeks ago

dependabot

dependabot

Created at 2 weeks ago
Created at 2 weeks ago
Created at 2 weeks ago

Update readme

Created at 2 weeks ago
create tag
mbilski create tag v1.1.0
Created at 2 weeks ago

Bump go in goreleaser

Created at 2 weeks ago
delete tag
mbilski delete tag v1.1.0
Created at 2 weeks ago
create tag
mbilski create tag v1.1.0
Created at 2 weeks ago

tls_client_auth (#7)

Created at 2 weeks ago
delete branch
mbilski delete branch feature/tls_client_auth
Created at 2 weeks ago
pull request closed
tls_client_auth
oauth2c on  feature/tls_client_auth [!] via 🐹 v1.19.3 took 2s
[I] ➜ go run . https://oauth2c.us.authz.cloudentity.io/oauth2c/demo \
  --client-id 3f07a8c2adea4c1ab353f3ca8e16b8fd \
  --tls-cert https://raw.githubusercontent.com/cloudentity/oauth2c/master/data/cert.pem \
  --tls-key https://raw.githubusercontent.com/cloudentity/oauth2c/master/data/key.pem \
  --grant-type client_credentials \
  --auth-method tls_client_auth \
  --scopes introspect_tokens,revoke_tokens

┌────────────────────────────────────────────────────────────────────┐
| Issuer URL  | https://oauth2c.us.authz.cloudentity.io/oauth2c/demo |
| Grant type  | client_credentials                                   |
| Auth method | tls_client_auth                                      |
| Scopes      | introspect_tokens, revoke_tokens                     |
| PKCE        | false                                                |
| Client ID   | 3f07a8c2adea4c1ab353f3ca8e16b8fd                     |
└────────────────────────────────────────────────────────────────────┘


    Client Credentials Flow


# Request authorization

POST https://oauth2c.mtls.us.authz.cloudentity.io/oauth2c/demo/oauth2/token
Headers:
  Content-Type: application/x-www-form-urlencoded
Form post:
  grant_type: client_credentials
  scope: introspect_tokens revoke_tokens
  client_id: 3f07a8c2adea4c1ab353f3ca8e16b8fd

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1668682916497 (0x1848540a291)
    Signature Algorithm: SHA256-RSA
        Issuer: CN=Ana-TpIxraP9mCAwyAbxk40LqpE5Utfjjd4EQrc6sBM
        Validity
            Not Before: Nov 17 11:01:56 2022 UTC
            Not After : Sep 13 11:01:56 2023 UTC
        Subject: CN=Ana-TpIxraP9mCAwyAbxk40LqpE5Utfjjd4EQrc6sBM
        Subject Public Key Info:
            Public Key Algorithm: RSA
                Public-Key: (2048 bit)
                Modulus:
                    ae:18:a9:0a:b0:d2:c8:42:69:af:c2:49:9c:13:91:
                    2d:76:f8:8d:86:f3:08:33:49:01:80:94:0a:e6:2d:
                    b3:ec:fb:88:b4:e7:7c:db:f6:02:49:a9:85:b6:3d:
                    12:91:a4:d6:3f:7a:21:06:6a:ee:0e:1f:c0:52:e1:
                    e4:74:bd:48:51:0f:a5:34:61:db:ee:4f:a7:54:11:
                    9d:df:a7:85:26:9e:4f:b8:64:55:71:93:1a:39:66:
                    44:31:e0:bf:5f:ba:f7:f3:19:15:2b:81:14:0f:48:
                    df:2c:dd:4f:b2:e5:91:6c:0f:65:2e:d6:2f:93:18:
                    1c:db:5b:2c:94:88:17:59:6c:f8:c2:e5:78:67:22:
                    e6:a5:82:70:b5:cf:a8:ca:5e:1b:f5:44:03:9d:c8:
                    85:f2:1c:54:83:03:53:78:37:81:6a:aa:10:ce:c2:
                    4d:67:64:74:9d:76:7d:4c:8c:a4:43:f3:17:55:4e:
                    60:66:9d:3b:5f:35:cd:da:3a:b0:89:1d:c9:6a:80:
                    a0:27:ac:52:ff:fd:5e:98:bd:c1:e2:53:ff:27:6e:
                    88:89:db:d3:1c:e9:b2:b8:8f:fd:4f:9d:5f:01:df:
                    d1:42:c8:ee:f2:88:a9:af:be:58:c6:c6:50:70:fd:
                    ef:8b:52:c5:33:a4:9d:8b:d1:4b:21:91:1d:60:a5:
                    9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: SHA256-RSA
         4b:cd:cb:1c:bb:b2:82:88:fc:56:c5:4f:8d:8f:72:e8:5a:1f:
         bf:cd:79:eb:2f:d3:c0:26:dc:7a:a2:76:5b:98:89:d6:eb:18:
         8c:37:63:57:4e:bd:df:e4:16:38:2f:f0:e6:a9:d3:b1:0d:c2:
         d2:13:da:b5:2d:c3:0d:1d:dd:41:6e:16:f4:70:0e:89:f5:e4:
         17:fc:8e:da:a5:d5:a7:67:bc:d1:a1:8c:7e:6c:6b:ed:d4:0a:
         c8:16:e3:b7:5b:7c:0c:6b:4c:c9:11:09:32:e2:5a:04:92:be:
         5b:f7:8a:45:c3:e2:15:9e:9a:55:aa:9b:c1:e7:8c:2e:11:27:
         a7:c6:1f:50:02:1d:15:a3:6f:e7:dc:30:81:91:f3:ce:00:26:
         47:7d:93:a5:65:9e:5a:9a:2e:ed:b6:82:1f:1e:df:28:25:a9:
         35:97:8a:97:1d:91:cf:a4:a6:99:b7:b6:8e:dd:6d:f1:ca:9b:
         d2:95:06:63:b8:6b:e3:3e:55:74:c2:34:44:19:06:b4:a5:4b:
         af:bc:78:b0:e8:b1:fb:8f:b7:43:97:0d:88:a7:eb:72:70:bd:
         9a:a5:69:dd:11:9f:8a:77:75:fb:65:bd:f7:fa:e6:ac:04:61:
         43:fa:44:4f:ec:18:a7:8e:74:4e:48:eb:2c:07:58:e9:56:2d:
         c1:4b:61:4f

Response:
{
  "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6IjU5NzU4NjA1NjEwNDY4NjgzMDgzNzIyNjM3OTQyMzEwNjY2NTg0IiwidHlwIjoiSldUIn0.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.AqUdPlk1zhsu7ADbC54wDShXf0n244mHXMCp69FVazFneUVviupb7gbiFq6zK4d7pqzwZ_vV40hOuH-N1eqxIA",
  "expires_in": 3599,
  "scope": "introspect_tokens revoke_tokens",
  "token_type": "bearer"
}
Access token:
{
  "aid": "demo",
  "amr": [],
  "aud": [
    "3f07a8c2adea4c1ab353f3ca8e16b8fd",
    "spiffe://oauth2c.us.authz.cloudentity.io/oauth2c/demo/demo-oauth2"
  ],
  "exp": 1668690464,
  "iat": 1668686864,
  "idp": "",
  "iss": "https://oauth2c.us.authz.cloudentity.io/oauth2c/demo",
  "jti": "681dfd79-c3fe-4c1e-b599-32d6bdabae0c",
  "nbf": 1668686864,
  "scp": ["introspect_tokens", "revoke_tokens"],
  "st": "public",
  "sub": "3f07a8c2adea4c1ab353f3ca8e16b8fd",
  "tid": "oauth2c"
}

 SUCCESS  Authorization completed

Created at 2 weeks ago
pull request opened
tls_client_auth
oauth2c on  feature/tls_client_auth [!] via 🐹 v1.19.3 took 2s
[I] ➜ go run . https://oauth2c.us.authz.cloudentity.io/oauth2c/demo \
  --client-id 3f07a8c2adea4c1ab353f3ca8e16b8fd \
  --tls-cert https://raw.githubusercontent.com/cloudentity/oauth2c/master/data/cert.pem \
  --tls-key https://raw.githubusercontent.com/cloudentity/oauth2c/master/data/key.pem \
  --grant-type client_credentials \
  --auth-method tls_client_auth \
  --scopes introspect_tokens,revoke_tokens

┌────────────────────────────────────────────────────────────────────┐
| Issuer URL  | https://oauth2c.us.authz.cloudentity.io/oauth2c/demo |
| Grant type  | client_credentials                                   |
| Auth method | tls_client_auth                                      |
| Scopes      | introspect_tokens, revoke_tokens                     |
| PKCE        | false                                                |
| Client ID   | 3f07a8c2adea4c1ab353f3ca8e16b8fd                     |
└────────────────────────────────────────────────────────────────────┘


    Client Credentials Flow


# Request authorization

POST https://oauth2c.mtls.us.authz.cloudentity.io/oauth2c/demo/oauth2/token
Headers:
  Content-Type: application/x-www-form-urlencoded
Form post:
  grant_type: client_credentials
  scope: introspect_tokens revoke_tokens
  client_id: 3f07a8c2adea4c1ab353f3ca8e16b8fd

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1668682916497 (0x1848540a291)
    Signature Algorithm: SHA256-RSA
        Issuer: CN=Ana-TpIxraP9mCAwyAbxk40LqpE5Utfjjd4EQrc6sBM
        Validity
            Not Before: Nov 17 11:01:56 2022 UTC
            Not After : Sep 13 11:01:56 2023 UTC
        Subject: CN=Ana-TpIxraP9mCAwyAbxk40LqpE5Utfjjd4EQrc6sBM
        Subject Public Key Info:
            Public Key Algorithm: RSA
                Public-Key: (2048 bit)
                Modulus:
                    ae:18:a9:0a:b0:d2:c8:42:69:af:c2:49:9c:13:91:
                    2d:76:f8:8d:86:f3:08:33:49:01:80:94:0a:e6:2d:
                    b3:ec:fb:88:b4:e7:7c:db:f6:02:49:a9:85:b6:3d:
                    12:91:a4:d6:3f:7a:21:06:6a:ee:0e:1f:c0:52:e1:
                    e4:74:bd:48:51:0f:a5:34:61:db:ee:4f:a7:54:11:
                    9d:df:a7:85:26:9e:4f:b8:64:55:71:93:1a:39:66:
                    44:31:e0:bf:5f:ba:f7:f3:19:15:2b:81:14:0f:48:
                    df:2c:dd:4f:b2:e5:91:6c:0f:65:2e:d6:2f:93:18:
                    1c:db:5b:2c:94:88:17:59:6c:f8:c2:e5:78:67:22:
                    e6:a5:82:70:b5:cf:a8:ca:5e:1b:f5:44:03:9d:c8:
                    85:f2:1c:54:83:03:53:78:37:81:6a:aa:10:ce:c2:
                    4d:67:64:74:9d:76:7d:4c:8c:a4:43:f3:17:55:4e:
                    60:66:9d:3b:5f:35:cd:da:3a:b0:89:1d:c9:6a:80:
                    a0:27:ac:52:ff:fd:5e:98:bd:c1:e2:53:ff:27:6e:
                    88:89:db:d3:1c:e9:b2:b8:8f:fd:4f:9d:5f:01:df:
                    d1:42:c8:ee:f2:88:a9:af:be:58:c6:c6:50:70:fd:
                    ef:8b:52:c5:33:a4:9d:8b:d1:4b:21:91:1d:60:a5:
                    9b
                Exponent: 65537 (0x10001)
    Signature Algorithm: SHA256-RSA
         4b:cd:cb:1c:bb:b2:82:88:fc:56:c5:4f:8d:8f:72:e8:5a:1f:
         bf:cd:79:eb:2f:d3:c0:26:dc:7a:a2:76:5b:98:89:d6:eb:18:
         8c:37:63:57:4e:bd:df:e4:16:38:2f:f0:e6:a9:d3:b1:0d:c2:
         d2:13:da:b5:2d:c3:0d:1d:dd:41:6e:16:f4:70:0e:89:f5:e4:
         17:fc:8e:da:a5:d5:a7:67:bc:d1:a1:8c:7e:6c:6b:ed:d4:0a:
         c8:16:e3:b7:5b:7c:0c:6b:4c:c9:11:09:32:e2:5a:04:92:be:
         5b:f7:8a:45:c3:e2:15:9e:9a:55:aa:9b:c1:e7:8c:2e:11:27:
         a7:c6:1f:50:02:1d:15:a3:6f:e7:dc:30:81:91:f3:ce:00:26:
         47:7d:93:a5:65:9e:5a:9a:2e:ed:b6:82:1f:1e:df:28:25:a9:
         35:97:8a:97:1d:91:cf:a4:a6:99:b7:b6:8e:dd:6d:f1:ca:9b:
         d2:95:06:63:b8:6b:e3:3e:55:74:c2:34:44:19:06:b4:a5:4b:
         af:bc:78:b0:e8:b1:fb:8f:b7:43:97:0d:88:a7:eb:72:70:bd:
         9a:a5:69:dd:11:9f:8a:77:75:fb:65:bd:f7:fa:e6:ac:04:61:
         43:fa:44:4f:ec:18:a7:8e:74:4e:48:eb:2c:07:58:e9:56:2d:
         c1:4b:61:4f

Response:
{
  "access_token": "eyJhbGciOiJFUzI1NiIsImtpZCI6IjU5NzU4NjA1NjEwNDY4NjgzMDgzNzIyNjM3OTQyMzEwNjY2NTg0IiwidHlwIjoiSldUIn0.eyJhaWQiOiJkZW1vIiwiYW1yIjpbXSwiYXVkIjpbIjNmMDdhOGMyYWRlYTRjMWFiMzUzZjNjYThlMTZiOGZkIiwic3BpZmZlOi8vb2F1dGgyYy51cy5hdXRoei5jbG91ZGVudGl0eS5pby9vYXV0aDJjL2RlbW8vZGVtby1vYXV0aDIiXSwiZXhwIjoxNjY4NjkwNDY0LCJpYXQiOjE2Njg2ODY4NjQsImlkcCI6IiIsImlzcyI6Imh0dHBzOi8vb2F1dGgyYy51cy5hdXRoei5jbG91ZGVudGl0eS5pby9vYXV0aDJjL2RlbW8iLCJqdGkiOiI2ODFkZmQ3OS1jM2ZlLTRjMWUtYjU5OS0zMmQ2YmRhYmFlMGMiLCJuYmYiOjE2Njg2ODY4NjQsInNjcCI6WyJpbnRyb3NwZWN0X3Rva2VucyIsInJldm9rZV90b2tlbnMiXSwic3QiOiJwdWJsaWMiLCJzdWIiOiIzZjA3YThjMmFkZWE0YzFhYjM1M2YzY2E4ZTE2YjhmZCIsInRpZCI6Im9hdXRoMmMifQ.AqUdPlk1zhsu7ADbC54wDShXf0n244mHXMCp69FVazFneUVviupb7gbiFq6zK4d7pqzwZ_vV40hOuH-N1eqxIA",
  "expires_in": 3599,
  "scope": "introspect_tokens revoke_tokens",
  "token_type": "bearer"
}
Access token:
{
  "aid": "demo",
  "amr": [],
  "aud": [
    "3f07a8c2adea4c1ab353f3ca8e16b8fd",
    "spiffe://oauth2c.us.authz.cloudentity.io/oauth2c/demo/demo-oauth2"
  ],
  "exp": 1668690464,
  "iat": 1668686864,
  "idp": "",
  "iss": "https://oauth2c.us.authz.cloudentity.io/oauth2c/demo",
  "jti": "681dfd79-c3fe-4c1e-b599-32d6bdabae0c",
  "nbf": 1668686864,
  "scp": ["introspect_tokens", "revoke_tokens"],
  "st": "public",
  "sub": "3f07a8c2adea4c1ab353f3ca8e16b8fd",
  "tid": "oauth2c"
}

 SUCCESS  Authorization completed

Created at 2 weeks ago
create branch
mbilski create branch feature/tls_client_auth
Created at 2 weeks ago