Skip to content
/ info-oauth2-server Public

OAuth2 server that written by springBoot(spring-authorization-server). It uses SpringBoot3, spring-authorization-server, Spring Security 5.7++, multimodule

oauth2.info-dsm.info
4 stars 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

qj0r9j0vc2/info-oauth2-server

BranchesTags

Repository files navigation

info-oauth2-server

oauth2-url: https://oauth2.info-dsm.info/

자세한 설명(한글)
연동 방법
java library: https://github.com/qj0r9j0vc2/info-oauth2-sdk-java

info-oauth2 provides user data from INFO service that is DSM job site as OAuth2 service

authorizationCodeTimeToLive 5minutes
accessTokenTimeToLive 1hours
accessTokenFormat self-contained Self-contained tokens use a protected, time-limited data structure that contains token metadata and claims of the user and/or client. JSON Web Token (JWT) is a widely used format
reuseRefreshTokens true
refreshTokenTimeToLive 12hours
idTokenSignatureAlgorithm RSASSA-PKCS1-v1_5 using SHA-256

Concepts

  +--------+                                           +---------------+
  |        |--(A)------- Authorization Grant --------->|               |
  |        |                                           |               |
  |        |<-(B)----------- Access Token -------------|               |
  |        |               & Refresh Token             |               |
  |        |                                           |               |
  |        |                            +----------+   |               |
  |        |--(C)---- Access Token ---->|          |   |               |
  |        |                            |          |   |               |
  |        |<-(D)- Protected Resource --| Resource |   | Authorization |
  | Client |                            |  Server  |   |     Server    |
  |        |--(E)---- Access Token ---->|          |   |               |
  |        |                            |          |   |               |
  |        |<-(F)- Invalid Token Error -|          |   |               |
  |        |                            +----------+   |               |
  |        |                                           |               |
  |        |--(G)----------- Refresh Token ----------->|               |
  |        |                                           |               |
  |        |<-(H)----------- Access Token -------------|               |
  +--------+           & Optional Refresh Token        +---------------+
reference - [https://datatracker.ietf.org/doc/html/rfc6749](https://datatracker.ietf.org/doc/html/rfc6749)

There is no refreshToken in this project. So the steps are only up to step F, and going to step F resets to step A.

How to use

If you want to learn more about project

About

OAuth2 server that written by springBoot(spring-authorization-server). It uses SpringBoot3, spring-authorization-server, Spring Security 5.7++, multimodule

oauth2.info-dsm.info

Topics

kotlin jpa gradle-kotlin-dsl spring-boot- spring-authorization-server spring-boot-3 spring-boot-3-0-6

Resources

Readme
Activity

Stars

4 stars

Watchers

2 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages