Skip to content

shauryadhadwal/oauth2-oidc-client-integrations

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

29 Commits

external-app-four

external-app-four

 
 

external-app-one

external-app-one

 
 

external-app-three

external-app-three

 
 

external-app-two

external-app-two

 
 

ory-hydra-login-consent-node

ory-hydra-login-consent-node

 
 

ory-hydra

ory-hydra

 
 

trusted-app-one

trusted-app-one

 
 

trusted-app-two

trusted-app-two

 
 

.gitignore

.gitignore

 
 

README.md

README.md

 
 

Repository files navigation

OAuth2.0 & OIDC integrations with clients using different grant flows

Will be using Ory Hydra as an Identity and Authorization server to mimic IdP service. You can feel free to use okta or AuthO etc. as well.

These are just sample applications to help you get started with OAuth2.0 and OIDC quickly. Not following any best practices or coding guidelines.

These samples can be used in different contexts:

  1. You are building an Identity Provider for you organization(THE COMPANY) using ory hydra (could be others like okta etc.). Think of trusted-apps as your own applications/apis (like Google Services) and external-apps as 3rd party clients who want to access your apis.
  2. Your organization (THE COMPANY) is using the services of an external-app (SAAS, PAAS) and have integrated it into your trusted-app, a user can go to the external-app from your trusted-app without filling his/her credentials again on external-app and start using it straight away thanks to Single Sign On.

Setting up Ory Hydra quickly

You can follow the steps laid out here on the Ory Hydra Documentation

Authorization Grant Flows

If you are new to this, then you can read about it here

Authorization Code Grant Flow

external-app-one A server side node express application demonstrating Auth code flow grant

  • Confidential

Implicit Grant Flow

external-app-two A React.js App demonstrating Implicit flow grant

  • Public Client

Authorization Code Grant Flow with PKCE

external-app-three A React.js App demonstrating Auth Code with PKCE

  • Public Client

Auto-refresh tokens on receiving 401 HTTP status

external-app-four A React.js App demonstrating Auth Code with PKCE. Using axios library to catch 401 response code in interceptors and initiating a refresh token request.

  • Public Client
  • Same as external-app-three

Other Projects

trusted-app-one An API server to emulate a Resource Server. Accepts access_tokens and validates them at /introspect endpoint of Authorization Server

How to get started?

  1. You need docker and docker-compose
  2. Run docker-compose up in ory-hydra folder
  3. Run npm run build && npm start in ory-hydra-login-consent-node
  4. Run npm run start in trusted-app-one folder
  5. Check the npm scripts in any of the external-app folders you want to test
  6. For client registration with ory-hydra, register-client.json has been provided in the folders.

TODOs

  1. Front-channel Logout
  2. Back-channel Logout

Resources

Which Auth Grant Flow to use? /token endpoint

About

Client Integrations with OAuth2.0 & OIDC Identity providers using different Grant Flows.

Topics

javascript identity oauth2 reactjs expressjs oidc ory ory-hydra

Resources

Readme
Activity

Stars

13 stars

Watchers

2 watching

Forks

1 fork
Report repository

Releases

No releases published

Packages

No packages published

Languages