{"id":37016240,"url":"https://github.com/mdsol/mauth-jvm-clients","last_synced_at":"2026-01-14T01:49:32.232Z","repository":{"id":3869126,"uuid":"4954779","full_name":"mdsol/mauth-jvm-clients","owner":"mdsol","description":"A Java client for mAuth","archived":false,"fork":false,"pushed_at":"2025-05-14T15:49:19.000Z","size":5992,"stargazers_count":3,"open_issues_count":2,"forks_count":0,"subscribers_count":311,"default_branch":"master","last_synced_at":"2025-05-14T16:46:41.446Z","etag":null,"topics":["product-quality","site-mgmt"],"latest_commit_sha":null,"homepage":null,"language":"Scala","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/mdsol.png","metadata":{"files":{"readme":"README.adoc","changelog":"CHANGELOG.md","contributing":"CONTRIBUTING.adoc","funding":null,"license":"LICENSE.txt","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null}},"created_at":"2012-07-09T08:34:24.000Z","updated_at":"2025-05-14T15:49:18.000Z","dependencies_parsed_at":"2024-02-06T13:27:07.487Z","dependency_job_id":"7a226986-351f-4b98-8d49-9750229cbe85","html_url":"https://github.com/mdsol/mauth-jvm-clients","commit_stats":null,"previous_names":["mdsol/mauth-java-client"],"tags_count":61,"template":false,"template_full_name":null,"purl":"pkg:github/mdsol/mauth-jvm-clients","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mdsol%2Fmauth-jvm-clients","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mdsol%2Fmauth-jvm-clients/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mdsol%2Fmauth-jvm-clients/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mdsol%2Fmauth-jvm-clients/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/mdsol","download_url":"https://codeload.github.com/mdsol/mauth-jvm-clients/tar.gz/refs/heads/master","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/mdsol%2Fmauth-jvm-clients/sbom","scorecard":{"id":633449,"data":{"date":"2025-08-11","repo":{"name":"github.com/mdsol/mauth-jvm-clients","commit":"45f2e4ed86a30e1b42eb186a06cd63cb5e86bdb8"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5.8,"checks":[{"name":"Code-Review","score":10,"reason":"all changesets reviewed","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Pinned-Dependencies","score":10,"reason":"all dependencies are pinned","details":["Info:   2 out of   2 GitHub-owned GitHubAction dependencies pinned","Info:   3 out of   3 third-party GitHubAction dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Maintained","score":0,"reason":"0 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 0","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: jobLevel 'contents' permission set to 'write': .github/workflows/release_drafter.yaml:14","Info: jobLevel 'pull-requests' permission set to 'read': .github/workflows/release_drafter.yaml:15","Warn: topLevel 'contents' permission set to 'write': .github/workflows/ci.yaml:9","Info: topLevel 'contents' permission set to 'read': .github/workflows/release_drafter.yaml:9"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"Vulnerabilities","score":10,"reason":"0 existing vulnerabilities detected","details":null,"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE.txt:0","Info: FSF or OSI recognized license: MIT License: LICENSE.txt:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Signed-Releases","score":-1,"reason":"no releases found","details":null,"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during branchesHandler.setup: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Packaging","score":10,"reason":"packaging workflow detected","details":["Info: Project packages its releases by way of GitHub Actions.: .github/workflows/ci.yaml:16"],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"SAST","score":0,"reason":"SAST tool is not run on all commits -- score normalized to 0","details":["Warn: 0 commits out of 30 are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}}]},"last_synced_at":"2025-08-21T08:29:03.010Z","repository_id":3869126,"created_at":"2025-08-21T08:29:03.011Z","updated_at":"2025-08-21T08:29:03.011Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":28408689,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-01-14T00:40:43.272Z","status":"ssl_error","status_checked_at":"2026-01-14T00:40:42.636Z","response_time":56,"last_error":"SSL_connect returned=1 errno=0 peeraddr=140.82.121.5:443 state=error: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["product-quality","site-mgmt"],"created_at":"2026-01-14T01:49:31.669Z","updated_at":"2026-01-14T01:49:32.222Z","avatar_url":"https://github.com/mdsol.png","language":"Scala","funding_links":[],"categories":[],"sub_categories":[],"readme":"image:https://travis-ci.org/mdsol/mauth-jvm-clients.png?branch=develop[Build Status,link=https://travis-ci.org/mdsol/mauth-jvm-clients]\n\n== Java Client for MAuth\n\nThis is a standalone client for Medidata Authentication\n\n== Medidata Authentication\n\nThe Medidata authentication process bounds - in this case verifies - an API message against its origin.\n\nMedidata authentication provides a fault tolerant, service-to-service authentication scheme for Medidata and third-party applications that use web services to communicate with each other.\n\nThe process and integrity algorithm are based on digital signatures encrypted and decrypted with private/public key pairs.\n\nMedidata's authentication process requires public key management, which is done by way of an API. It provides message integrity and provenance validation by verifying a message sender's signature. Each public key is associated with an application and is used to authenticate message signatures. Each private key is stored by the application signing requests with the private key.\n\n*NOTE:* Only the signing application has any knowledge of the application's private key.\n\n=== MAuth proxy\n\nIf you're performing some small, manual tests with MAuth-enabled service and do not want to \ncode the MAuth signing process, consider using these tools:\n\n- https://github.com/mdsol/go-mauth-proxy\n- https://github.com/mdsol/mauth-insomnia-plugin (For users of the Insomnia HTTP client)\n\n=== Usage\n\nA Medidata server requires the requests to be signed using Medidata Authentication\n\n* Client Side - Client needs to sign each request using an implementation of link:modules/mauth-signer/src/main/java/com/mdsol/mauth/Signer.java[Signer] interface.\n\n** Asynchronous\n** link:modules/mauth-signer-akka-http[akka-http]\n** Synchronous\n\n** link:modules/mauth-signer-apachehttp[apache-http]\n* Server Side - Server authenticates each request using an implementation of\n\n** Asynchronous link:modules/mauth-authenticator/src/main/scala/com/mdsol/mauth/scaladsl/Authenticator.scala[Authenticator] and link:modules/mauth-authenticator/src/main/scala/com/mdsol/mauth/scaladsl/utils/ClientPublicKeyProvider.scala[ClientPublicKeyProvider]\n** link:modules/mauth-authenticator-akka-http[akka-http]\n** Synchronous link:modules/mauth-authenticator/src/main/java/com/mdsol/mauth/Authenticator.java[Authenticator] and link:modules/mauth-authenticator/src/main/java/com/mdsol/mauth/utils/ClientPublicKeyProvider.java[ClientPublicKeyProvider]\n\n** link:modules/mauth-authenticator-apachehttp[apache-http]\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmdsol%2Fmauth-jvm-clients","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fmdsol%2Fmauth-jvm-clients","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fmdsol%2Fmauth-jvm-clients/lists"}