Comments (3)
10 mar 2016 kl. 12:16 skrev Mateus Demboski [email protected]:
Hello, i researched in doc, but not find any method to verify if token is valid
There are depending on the functionality of the Identity server a couple of ways of
doing this:
- Brute-force. You try to use it and sees what happens :-)
- Check the ’expire at’ (exp) time
- Use introspection, there is a specification (RFC 7662) that specifies how this is done,
not all identity servers support it.
and/or verify if user is same logged in Identity Server/ oidc provider…
Not sure I understand your question here.
Could you please elaborate.
— Roland
”Everybody should be quiet near a little stream and listen."
From ’Open House for Butterflies’ by Ruth Krauss
from pyoidc.
Closing this one off, as it is going stale. Feel free to re-open if more questions arise.
from pyoidc.
Hello, I have a basic OP client implemented using pyoidc library according to the docs. This client is supposed to be an 'admin client', i.e. users contacting our system can provide their access_tokens and we would wish to use these in order to perform actions on behalf of the user. Our 'admin' OP client and the user OP clients are independent and are both based on the same OP.
-
Is it possible to verify any received access_token, knowing the issuer and having my own client configured on the same OP ? How could I do this using the pyoidc library without contacting the OP repetitively for several tokens ?
-
Is it possible to perform actions with such access_token on behalf of the user ?
Many Thanks for any insight !
Cheers,
Jaroslav
from pyoidc.
Related Issues (20)
- Document release process / pypi upload HOT 2
- Create python 3.11 compatible release for pypi HOT 2
- Client.request_and_return no longer works with NoneResponse HOT 5
- Update conda-forge packages HOT 1
- Update URL references after repo move HOT 2
- AttributeError: 'dict' object has no attribute 'create_cookie' HOT 3
- Allow using different authn_method in Consumer.complete()
- Consumer.backchannel_logout and handling state HOT 11
- Architecture question regardings multiple app instances HOT 3
- Cannot add `scope` to registration request HOT 5
- Release 1.5.1 HOT 4
- Investigate failing readthedocs.io build HOT 1
- pydantic 2 seems to be incompatible with oic currently HOT 1
- Now in seconds vs. milliseconds: IATError: Issued in the future HOT 2
- Multiple matching kid support HOT 1
- Add support for RFC 9207 (?) HOT 1
- Why does `Client.do_access_token_refresh` require `state`? HOT 2
- Use SLSA workflow to create releases for PyPi HOT 1
- Client.parse_response misinterprets success as failure HOT 4
- Fix mypy
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from pyoidc.