Skip to content
/ oauth2-dance Public

Implementation of OAuth2 Authorization Code Grant w/PKCE using Deno

deno.land/x/oauth2_dance

License

MIT license
0 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

steinsiv/oauth2-dance

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

37 Commits

.vscode

.vscode

 
 

examples

examples

 
 

src

src

 
 

.env.example

.env.example

 
 

.gitignore

.gitignore

 
 

Dockerfile-client

Dockerfile-client

 
 

Dockerfile-resource

Dockerfile-resource

 
 

Dockerfile-server

Dockerfile-server

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

deno.json

deno.json

 
 

deps.ts

deps.ts

 
 

docker-compose.yml

docker-compose.yml

 
 

mod.ts

mod.ts

 
 

Repository files navigation

oauth2_dance

https://deno.land/x/oauth2_dance

Implementation of OAuth2 Authorization Code Grant w/PKCE using Deno

RFC 6749 - OAuth2 Authorization Code Grant ch. 4.1
RFC 7636 - PKCE Code Challenge

This module is a WIP of rfc6749 and rfc 7636 and will hopefully suit as an entrypoint when learning about OAuth2.

...and since we are learning TS Deno and OAuth2 as we go, expect the code to change frequently!

example .env file

DENO_AUTHORIZE_URL=http://localhost:9001/authorize
DENO_TOKEN_URL=http://localhost:9001/token
DENO_INTROSPECT_URL=http://localhost:9001/introspect
DENO_CLIENT_ID=client1
DENO_CLIENT_SECRET=clientsecret1
DENO_CLIENT_REDIRECT_URL="http://localhost:3000/callback"
DENO_FILE_TOKENS_DB="tokens.db"

Testing

Deno

  1. Create your .env file in root folder like the one above.

  2. Start client, server and resource

$ deno run --allow-all --location=http://localhost ./examples/oauth2_client.ts
$ deno run --allow-all --location=http://localhost ./examples/oauth2_server.ts
$ deno run --allow-all --location=http://localhost ./examples/oauth2_resource.ts

  1. Visit http://localhost:3000/authme

  2. Test the protected resource with issued token:

$ curl -H 'Authorization: Bearer <TOKEN>' http://localhost:7000/protected

Docker

  1. obs! Your .env need to change the line DENO_TOKEN_URL=http://server:9001/token to use server instead of localhost in this setup.

  2. optional, verify environment-var replacements with docker compose config

  3. build images and run with docker-compose

$ ./build-docker.sh
$ docker compose up (-d optionally)
  1. Visit http://localhost:3000/authme
  2. Test the protected resource with issued token:
$ curl -H 'Authorization: Bearer <TOKEN>' http://localhost:7000/protected

Output Logged:

oa2client    | Client listening on :3000
oa2server    | Authorization server listening on :9001
oa2resource  | Protected resource listening on :7000
oa2client    | GET http://localhost:3000/authme
oa2server    | GET http://localhost:9001/authorize?response_type=code&client_id=oauth-client-1&redirect_uri=http%3A%2F%2Flocalhost%3A3000%2Fcallback&state=X1GCu7df&scope=foo&code_challenge=%2FREQgseA8M5EMoMON6TfYQzQ%2FxxxSloFBYnNHAVnjS4%3D&code_challenge_method=S256
oa2server    | POST http://localhost:9001/approve
oa2server    | TOKENDB hcYb8Ew40vYaD20usTg87t8H, 2021-10-11 15:16:14
oa2server    | POST http://server:9001/token
oa2client    | TOKEN Take The Token: {"access_token":"hcYb8Ew40vYaD20usTg87t8H","token_type":"Bearer","expires_in":600}
oa2client    | GET http://localhost:3000/callback?code=ttdzwd3Bv4ik&state=X1GCu7df
oa2resource  | GET http://localhost:7000/protected

About

Implementation of OAuth2 Authorization Code Grant w/PKCE using Deno

deno.land/x/oauth2_dance

Topics

oauth2 oauth2-server deno

Resources

Readme

License

MIT license
Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks
Report repository

Releases 1

Initial alpha Latest
Nov 1, 2021

Packages

No packages published

Languages