{"id":35128168,"url":"https://github.com/connellboyce/cb-authorization-hub","last_synced_at":"2026-03-17T09:32:53.642Z","repository":{"id":273630195,"uuid":"851365197","full_name":"connellboyce/cb-authorization-hub","owner":"connellboyce","description":"OAuth Server and Login Application for my Projects","archived":false,"fork":false,"pushed_at":"2026-01-01T17:00:18.000Z","size":658,"stargazers_count":1,"open_issues_count":13,"forks_count":1,"subscribers_count":1,"default_branch":"main","last_synced_at":"2026-01-06T22:17:09.522Z","etag":null,"topics":["authentication","authorization","login","oauth2","oauth2-server"],"latest_commit_sha":null,"homepage":"https://auth.connellboyce.com","language":"Java","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"cc0-1.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/connellboyce.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":"CONTRIBUTING.md","funding":null,"license":"LICENSE","code_of_conduct":"CODE_OF_CONDUCT.md","threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-09-03T00:54:09.000Z","updated_at":"2026-01-01T17:00:20.000Z","dependencies_parsed_at":"2025-01-22T03:23:23.877Z","dependency_job_id":"3e165316-9aa3-466b-ab27-47ee21ad01d0","html_url":"https://github.com/connellboyce/cb-authorization-hub","commit_stats":null,"previous_names":["connellboyce/cb-oauth-2.1","connellboyce/cb-authorization-hub"],"tags_count":10,"template":false,"template_full_name":null,"purl":"pkg:github/connellboyce/cb-authorization-hub","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/connellboyce%2Fcb-authorization-hub","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/connellboyce%2Fcb-authorization-hub/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/connellboyce%2Fcb-authorization-hub/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/connellboyce%2Fcb-authorization-hub/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/connellboyce","download_url":"https://codeload.github.com/connellboyce/cb-authorization-hub/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/connellboyce%2Fcb-authorization-hub/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":30620718,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-03-17T08:10:05.930Z","status":"ssl_error","status_checked_at":"2026-03-17T08:10:04.972Z","response_time":56,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["authentication","authorization","login","oauth2","oauth2-server"],"created_at":"2025-12-28T04:01:30.318Z","updated_at":"2026-03-17T09:32:53.637Z","avatar_url":"https://github.com/connellboyce.png","language":"Java","funding_links":[],"categories":[],"sub_categories":[],"readme":"# OAuth Server and Client Portal\r\n### An OAuth 2.1 implementation with Spring Authorization Server and a Spring Web based portal to manage clients and scopes.\r\n\r\n\u003cp align=\"center\"\u003e\r\n    \u003cimg alt=\"JDK Version\" src=\"https://img.shields.io/badge/JDK-21-CC5500\"/\u003e\r\n    \u003cimg alt=\"Spring Boot Version\" src=\"https://img.shields.io/badge/Spring Boot-3.3.3-green\"/\u003e\r\n    \u003ca href=\"/LICENSE\"\u003e\u003cimg alt=\"License\" src=\"https://img.shields.io/badge/license-CC0--1.0-blue.svg\"/\u003e\u003c/a\u003e\r\n\u003cbr\u003e\r\n    \u003ca href=\"https://github.com/connellboyce/cb-authorization-hub/actions/workflows/build.yml\"\u003e\u003cimg alt=\"Actions Status\" src=\"https://github.com/connellboyce/cb-authorization-hub/actions/workflows/build.yml/badge.svg\"\u003e\u003c/a\u003e\r\n\u003c/p\u003e\r\n\r\n\u003chr\u003e\r\n\r\n### Table of Contents\r\n  - [Overview](#overview)\r\n    - [OAuth2.1 Authorization Server](#oauth21-authorization-server)\r\n        - [OAuth Endpoints](#oauth-endpoints) \r\n        - [Supported Grants](#supported-grants)\r\n        - [OpenID Connect Compliant](#openid-connect-compliant)\r\n    - [Login Page](#login-page)\r\n    - [Developer Hub](#developer-hub)\r\n      - [Application Registration](#application-registration)\r\n      - [OAuth Client Registration](#oauth-client-registration)\r\n  - [References](#references)\r\n    - [OAuth 2.1](#oauth-21)\r\n\r\n## Overview\r\n\r\n### OAuth2.1 Authorization Server\r\n\r\n#### OAuth Endpoints\r\n- **/oauth2/authorize**\r\n  - Authorization endpoint\r\n  - Redirects to the login page if not authenticated\r\n  - Redirects to the client application after successful authentication\r\n- **/oauth2/token**\r\n  - Token endpoint\r\n  - Exchanges authorization code for access token\r\n  - Exchanges refresh token for new access token\r\n- **/oauth2/jwks**\r\n  - JSON Web Key Set endpoint\r\n  - Provides public keys for verifying JWTs\r\n\r\n#### Supported Grants\r\n- Authorization Code\r\n- Client Credentials\r\n- Refresh Token\r\n- On-Behalf-Of Token Exchange (Work in Progress)\r\n\r\n#### OpenID Connect Compliant\r\n- Supports OpenID Connect\r\n- Provides ID Token\r\n- Supports UserInfo endpoint (Work in Progress)\r\n\r\n### Login Page\r\n- Authentication\r\n  - Username and password authentication\r\n- Registration\r\n  - User registration\r\n\r\n\r\n### Developer Hub\r\n\r\n#### Application Management\r\n- Register a new application\r\n- Update an application\r\n- Delete an application\r\n- Define scopes owned by the application\r\n\r\n#### OAuth Client Management\r\n- Register a new OAuth client\r\n- Update an OAuth client\r\n- Delete an OAuth client\r\n- Define grants to be consumed by the OAuth client\r\n- Define scopes to be consumed by the OAuth client\r\n\r\n### Additional Features\r\n\r\n#### Well Known Endpoints\r\n- /.well-known/robots.txt\r\n- /.well-known/humans.txt\r\n\r\n#### Spring Actuator Endpoints\r\n- /actuator/health\r\n- /actuator/info\r\n\r\n## References\r\n\r\n### OAuth 2.1\r\nThe OAuth 2.1 Authorization Framework ([proposal](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-10)) is an extension of the OAuth 2.0 standard ([RFC6749](https://datatracker.ietf.org/doc/html/rfc6749)) authorization server.\r\n\r\n### On-Behalf-Of Grant\r\nAlso known as token exchange grant, On-Behalf-Of grant [RFC8693](https://datatracker.ietf.org/doc/html/rfc8693) is an extension of OAuth2.0 and is used to exchange a token for another token on behalf of a user. This is useful for scenarios where a client application needs to access a resource on behalf of a user, but does not have the user's credentials. Microsoft has [one such implementation](https://learn.microsoft.com/en-us/entra/identity-platform/v2-oauth2-on-behalf-of-flow)\r\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fconnellboyce%2Fcb-authorization-hub","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fconnellboyce%2Fcb-authorization-hub","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fconnellboyce%2Fcb-authorization-hub/lists"}