Comments (9)
This would be great! I know many companies still rely on SAML Assertion for their authorization, and it would be awesome to support it.
We can have the SamlGrantType implement ClientAssertionType, and then the token
controller will use it for authorization as well, which is the logic that allows the JWT
tokens to do this, so I do not believe any enhancement is necessary here.
from oauth2-server-php.
Hi, Any updates on this one? I'm interested. I may take a look.
from oauth2-server-php.
@aacotroneo Unfortunately, no. Would love to see a PR if you're interested! 😄
from oauth2-server-php.
@F21 Of course! :) I haven't even started, but It shouldn't take long (I hope). I'll start by reading the draft!
from oauth2-server-php.
@aacotroneo that would be amazing
from oauth2-server-php.
Well, I'm working on it!
Much of the validation the oauth2-server needs to do is pretty similar to what a saml service provider does. So, I thought about making an adapter to use onelogin/php-saml which handles all the hard xml validation stuff and has lots of unit tests.
I'm dealing with saml configuration right now. I'll try to make a simple case work, and then see how we can refactor it.
from oauth2-server-php.
Even if you have a demo app and enough material to add a cookbook article to the docs, that would also be immensely helpful
from oauth2-server-php.
from oauth2-server-php.
@bshaffer Here is a sample implementation of your server using Slim framework (i saw a request for that). You'll see that it also implements the saml2-bearer grant type, but there's not much to see there. It just adds the grant type with a proper configuration array. I'll see if I find a way to make a test client without needing to setup a real IDP.
Edit: here = https://github.com/aacotroneo/saml2-bearer-server
from oauth2-server-php.
Related Issues (20)
- Revoking token
- unable to generate access token
- PKCE Support, please HOT 1
- Integration with Psr\Http\Message\ RequestInterface and ResponseInterface HOT 1
- [QUESTION] OpenID Connect Back-Channel Logout
- Firebase/JWT <6 is considered security risk HOT 6
- Different user database depending on client_id
- Add getToken() to ResourceControllerInterface
- cors issue with authorize.php
- Help with error using JWT?
- Ci4 OAuth2 ACCESS_TOKEN invalid
- No way to distinguish between "invalid" and expired JWT token HOT 8
- Step-by-step Walkthrough not up-to-date HOT 2
- Not possible to inject custom implementation of EncryptionInterface without overriding whole createDefaultIdTokenResponseType() or whole response type
- how do i use cookie
- http://192.168.1.205/authorize.php?response_type=code&client_id=testclient&state=xyz HOT 2
- Device Authorization Grant support
- refresh token
- Column 'code_challenge' cannot be null HOT 1
- How can i use PKCE to add code_challenge authentication HOT 1
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from oauth2-server-php.