{"id":50216780,"url":"https://github.com/e3stpavel/moauth-thesis","last_synced_at":"2026-05-26T09:33:36.953Z","repository":{"id":358432821,"uuid":"1241335454","full_name":"e3stpavel/moauth-thesis","owner":"e3stpavel","description":"Minimal OAuth 2.0 authorization server build with Astro","archived":false,"fork":false,"pushed_at":"2026-05-17T10:24:50.000Z","size":275,"stargazers_count":0,"open_issues_count":1,"forks_count":0,"subscribers_count":0,"default_branch":"main","last_synced_at":"2026-05-17T12:34:13.914Z","etag":null,"topics":["astro","auth","authentication","authorization","authorization-server","libsql","nodejs","oauth2","openid-connect","typescript"],"latest_commit_sha":null,"homepage":"","language":"TypeScript","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"agpl-3.0","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/e3stpavel.png","metadata":{"files":{"readme":"README.md","changelog":null,"contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":"SECURITY.md","support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2026-05-17T08:54:41.000Z","updated_at":"2026-05-17T10:24:53.000Z","dependencies_parsed_at":null,"dependency_job_id":null,"html_url":"https://github.com/e3stpavel/moauth-thesis","commit_stats":null,"previous_names":["e3stpavel/moauth-thesis"],"tags_count":null,"template":false,"template_full_name":null,"purl":"pkg:github/e3stpavel/moauth-thesis","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/e3stpavel%2Fmoauth-thesis","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/e3stpavel%2Fmoauth-thesis/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/e3stpavel%2Fmoauth-thesis/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/e3stpavel%2Fmoauth-thesis/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/e3stpavel","download_url":"https://codeload.github.com/e3stpavel/moauth-thesis/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/e3stpavel%2Fmoauth-thesis/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":33514165,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-26T03:12:49.672Z","status":"ssl_error","status_checked_at":"2026-05-26T03:12:47.976Z","response_time":63,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["astro","auth","authentication","authorization","authorization-server","libsql","nodejs","oauth2","openid-connect","typescript"],"created_at":"2026-05-26T09:33:36.230Z","updated_at":"2026-05-26T09:33:36.945Z","avatar_url":"https://github.com/e3stpavel.png","language":"TypeScript","funding_links":[],"categories":[],"sub_categories":[],"readme":"# moauth\n\nMinimal OAuth 2.0 authorization server\n\n[![Built with Astro](https://astro.badg.es/v2/built-with-astro/tiny.svg)](https://astro.build)\n\n## Disclaimer\nThis project is not a production-ready authorization server, rather a prototype built as a part of a graduation thesis _\"Selecting OAuth 2.0 Authorization Server for Applications with Microservices Architecture: Architectural Considerations and Practical Evaluation\"_ in TalTech University. Please note that this repository will not get any updates and is archived!\n\n## Run\n1. Clone `git clone`\n1. Push schema and seed database (see [Configuration/Database](#database))\n1. Configure your clients (see [Configuration/Clients](#clients))\n1. Build and run `docker compose up -d`\n1. Open `http://localhost:3210`\n1. Ready!\n\n## OAuth 2.0 Standards\nNow **moauth** implements/follows:\n- [The OAuth2 Authentication Framework (RFC6749)](https://datatracker.ietf.org/doc/html/rfc6749)\n- [The OAuth2 Bearer Token (RFC6750)](https://datatracker.ietf.org/doc/html/rfc6750)\n- [Proof Key for Code Exchange by OAuth Public Clients (RFC7636)](https://datatracker.ietf.org/doc/html/rfc7636)\n- [JSON Web Token (JWT) Profile for OAuth 2.0 Access Tokens (RFC9068)](https://datatracker.ietf.org/doc/html/rfc9068)\n- [Best Current Practice for OAuth 2.0 Security (RFC9700)](https://datatracker.ietf.org/doc/html/rfc9700)\n\n## Configuration\n### Database\nYou need to push database schema and optionally seed database before you start!\n\n1. Install dependencies `pnpm install`\n1. Run `docker compose up db -d`\n1. Push schema to `http://localhost:8080`:\n```\nASTRO_DB_REMOTE_URL=http://localhost:8080 pnpm --filter @moauth/identity astro db push\n```\n1. [Optional] Seed database:\n```\nASTRO_DB_REMOTE_URL=http://localhost:8080 pnpm --filter @moauth/identity astro db execute db/seed.ts --remote\n```\n\nThis will add a single user:\n```\nEmail:      pamayo@taltech.ee\nPassword:   Pass1234!\n```\n\n### Clients\nYou can register client in `apps/identity/src/oauth/clients.ts`:\n```typescript\nconst clients: Client[] = [\n  // add your client here!\n]\n```\n\n#### Client Secret\nClients without secret (i.e. `secretHash: null`) are public clients\n\nTo add confidential client:\n1. Generate 32 random bytes from secure source\n1. Encode random bytes with **hex uppercase** - that's your secret!\n1. Hash secret using SHA-256\n1. Encode hashed bytes using **hex lowercase** - that's your `secretHash`!\n\n#### Client ID\nIt's [`cuid2`](https://github.com/paralleldrive/cuid2)\n\nYou can generate one with\n```\ncuid\n# prints: nnqq8p0utwlb37769z9xt0gc\n```\n\n## Security\nProject is archived and doesn't accept new issues/pull requests. However, security vulnerabilities can be reported to author directly at mayorov.eestpavel@gmail.com. All security vulnerabilities will be promptly addressed and made public.\n\n## License\nGNU Affero General Public License v3.0\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fe3stpavel%2Fmoauth-thesis","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fe3stpavel%2Fmoauth-thesis","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fe3stpavel%2Fmoauth-thesis/lists"}