Skip to content
/ simpath Public

It's a simple auth identity provider built using Golang

0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

hrz8/simpath

BranchesTags

Repository files navigation

simpath

It's a simple OAuth2 server and OIDC server implementation using Golang.

Inspired by go-oauth2-server

Setup

./gen_jwt.sh # this will print env var jwt related into your stdout
# then set env var

Run

# start mock client (this client is plain)
go run ./cmd/client # start at 8088
# start oauth client (this client using golang oauth2 library)
go run ./cmd/oauthclient # start at 8089
# start oauth server
go run ./cmd/server

Web

Open your favorite browser

http://localhost:8089 or http://localhost:8088/signin
# this will redirect you to
http://localhost:5001/v1/oauth2/authorize?client_id=600ef080-d02c-426d-bf79-64247ba0fc90&login_redirect_uri=%2Fv1%2Fauthorize&redirect_uri=http%3A%2F%2Flocalhost%3A8088%2Fsignin&scope=read_write&state=somestate

Login with

Email: test@root
Password: test_password

How to exchange access token

Using authorization code

Form Url-Encoded (Standard)

curl -X POST "localhost:5001/v1/oauth2/token" \
     -u "600ef080-d02c-426d-bf79-64247ba0fc90:test_secret" \
     -d "grant_type=authorization_code" \
     -d "code=66a97c2b-c3e7-4ab8-bd0b-2dbffb5e70b9" \
     -d "redirect_uri=http://localhost:8088/signin"

JSON (Non Standard)

curl -X POST "localhost:5001/v1/oauth2/external/token" \
     -u "600ef080-d02c-426d-bf79-64247ba0fc90:test_secret" \
     -H "Content-Type: application/json" \
     -d '{
           "grant_type": "authorization_code",
           "code": "66a97c2b-c3e7-4ab8-bd0b-2dbffb5e70b9",
           "redirect_uri": "http://localhost:8088/signin"
         }'

Using refresh token

curl -X POST "localhost:5001/v1/oauth2/token" \
     -u "600ef080-d02c-426d-bf79-64247ba0fc90:test_secret" \
     -H "Content-Type: application/json" \
     -d '{
           "grant_type": "refresh_token",
           "refresh_token": "0070bcd5-278b-4c58-9d85-1b9b0afdc3c9"
         }'

Using user's credentials

curl -X POST "localhost:5001/v1/oauth2/token" \
     -u "600ef080-d02c-426d-bf79-64247ba0fc90:test_secret" \
     -H "Content-Type: application/json" \
     -d '{
           "grant_type": "refresh_token",
           "email": "test@root",
           "password": "test_password",
           "scope": "read_write"
         }'

Introspect Token

Using Access Token

curl -X POST "localhost:5001/v1/oauth2/introspect" \
     -u "600ef080-d02c-426d-bf79-64247ba0fc90:test_secret" \
     -H "Content-Type: application/json" \
     -d '{
           "token": "b59f9c78-57be-44f2-8cf2-5e2506d2d3bb",
           "token_type_hint": "access_token"
         }'

Using Refresh Token

curl -X POST "localhost:5001/v1/oauth2/introspect" \
     -u "600ef080-d02c-426d-bf79-64247ba0fc90:test_secret" \
     -H "Content-Type: application/json" \
     -d '{
           "token": "ced70797-3566-464f-ba36-344ace1811f6",
           "token_type_hint": "refresh_token"
         }'

OIDC

Fetch User Info

curl http://localhost:5001/v1/oauth2/userinfo \
     -H "Authorization: Bearer <access_token>"

About

It's a simple auth identity provider built using Golang

Topics

golang oauth2 identityserver oauth2-server

Resources

Readme
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Languages