2 repositorios
The process of exchanging a temporary authorization code for an access token.
Distinct from OAuth2 Client Authorization: Specific implementation of the OAuth2 code exchange flow, distinct from general token generation.
Explore 2 awesome GitHub repositories matching security & cryptography · Authorization Code Exchanges. Refine with filters or upvote what's useful.
This project is a PHP library for implementing a spec-compliant OAuth 2.0 authorization server. It serves as an authentication framework for managing user identities and client authorizations, providing the necessary components to issue and validate access and refresh tokens. The server supports a wide range of standardized authorization flows, including authorization code exchange, device grants, implicit flows, and PKCE enforcement. It handles complex token lifecycles through refresh token rotation, scope management, and the use of asymmetric keys for signing digital tokens. The system pro
Verifies authorization codes and client credentials to issue signed access and encrypted refresh tokens.
This is a Go library for obtaining, refreshing, and attaching OAuth 2.0 access tokens to HTTP requests. It provides a generic token source interface with interchangeable implementations for different OAuth 2.0 grant types, and wraps the Go net/http transport layer to automatically attach access tokens as Authorization headers on outgoing requests. The library supports the authorization code flow, generating consent page URLs and exchanging authorization codes for tokens. It also implements the device authorization grant for authentication on devices without a browser, and the resource owner p
Generates consent page URLs and exchanges authorization codes for access tokens.