{"id":49604490,"url":"https://github.com/oidc-mytoken/server","last_synced_at":"2026-05-04T11:04:02.016Z","repository":{"id":37885931,"uuid":"294636645","full_name":"oidc-mytoken/server","owner":"oidc-mytoken","description":"Mytoken is a web service to obtain OpenID Connect Access Tokens in an easy but secure way for extended periods of time and across multiple devices.","archived":false,"fork":false,"pushed_at":"2026-04-30T09:22:39.000Z","size":6232,"stargazers_count":8,"open_issues_count":0,"forks_count":1,"subscribers_count":3,"default_branch":"prerel","last_synced_at":"2026-04-30T10:26:19.430Z","etag":null,"topics":["myproxy","mytoken","oidc","oidc-agent","oidc-token","oidc-token-management","openid","openid-connect"],"latest_commit_sha":null,"homepage":"https://docs.mytok.eu","language":"Go","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":"mit","status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/oidc-mytoken.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":"LICENSE","code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2020-09-11T08:20:54.000Z","updated_at":"2026-04-30T09:22:41.000Z","dependencies_parsed_at":"2023-12-15T08:30:31.965Z","dependency_job_id":"b5d62c34-f673-4bf5-89a7-387ea1a14a52","html_url":"https://github.com/oidc-mytoken/server","commit_stats":null,"previous_names":["zachmann/mytoken"],"tags_count":30,"template":false,"template_full_name":null,"purl":"pkg:github/oidc-mytoken/server","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/oidc-mytoken%2Fserver","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/oidc-mytoken%2Fserver/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/oidc-mytoken%2Fserver/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/oidc-mytoken%2Fserver/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/oidc-mytoken","download_url":"https://codeload.github.com/oidc-mytoken/server/tar.gz/refs/heads/prerel","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/oidc-mytoken%2Fserver/sbom","scorecard":{"id":703611,"data":{"date":"2025-08-11","repo":{"name":"github.com/oidc-mytoken/server","commit":"f30e4648a411f6232310840913efec6abaf72c33"},"scorecard":{"version":"v5.2.1-40-gf6ed084d","commit":"f6ed084d17c9236477efd66e5b258b9d4cc7b389"},"score":5.3,"checks":[{"name":"Code-Review","score":-1,"reason":"Found no human activity in the last 13 changesets","details":null,"documentation":{"short":"Determines if the project requires human code review before pull requests (aka merge requests) are merged.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#code-review"}},{"name":"Packaging","score":-1,"reason":"packaging workflow not detected","details":["Warn: no GitHub/GitLab publishing workflow detected."],"documentation":{"short":"Determines if the project is published as a package that others can easily download, install, easily update, and uninstall.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#packaging"}},{"name":"Dangerous-Workflow","score":10,"reason":"no dangerous workflow patterns detected","details":null,"documentation":{"short":"Determines if the project's GitHub Action workflows avoid dangerous patterns.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#dangerous-workflow"}},{"name":"Token-Permissions","score":0,"reason":"detected GitHub workflow tokens with excessive permissions","details":["Warn: no topLevel permission defined: .github/workflows/codebase.yml:1","Info: no jobLevel write permissions found"],"documentation":{"short":"Determines if the project's workflows follow the principle of least privilege.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#token-permissions"}},{"name":"Maintained","score":10,"reason":"12 commit(s) and 0 issue activity found in the last 90 days -- score normalized to 10","details":null,"documentation":{"short":"Determines if the project is \"actively maintained\".","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#maintained"}},{"name":"CII-Best-Practices","score":0,"reason":"no effort to earn an OpenSSF best practices badge detected","details":null,"documentation":{"short":"Determines if the project has an OpenSSF (formerly CII) Best Practices Badge.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#cii-best-practices"}},{"name":"Binary-Artifacts","score":10,"reason":"no binaries found in the repo","details":null,"documentation":{"short":"Determines if the project has generated executable (binary) artifacts in the source repository.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#binary-artifacts"}},{"name":"Security-Policy","score":0,"reason":"security policy file not detected","details":["Warn: no security policy file detected","Warn: no security file to analyze","Warn: no security file to analyze","Warn: no security file to analyze"],"documentation":{"short":"Determines if the project has published a security policy.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#security-policy"}},{"name":"License","score":10,"reason":"license file detected","details":["Info: project has a license file: LICENSE:0","Info: FSF or OSI recognized license: MIT License: LICENSE:0"],"documentation":{"short":"Determines if the project has defined a license.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#license"}},{"name":"Fuzzing","score":0,"reason":"project is not fuzzed","details":["Warn: no fuzzer integrations found"],"documentation":{"short":"Determines if the project uses fuzzing.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#fuzzing"}},{"name":"Pinned-Dependencies","score":0,"reason":"dependency not pinned by hash detected -- score normalized to 0","details":["Warn: GitHub-owned GitHubAction not pinned by hash: .github/workflows/codebase.yml:12: update your workflow using https://app.stepsecurity.io/secureworkflow/oidc-mytoken/server/codebase.yml/prerel?enable=pin","Warn: third-party GitHubAction not pinned by hash: .github/workflows/codebase.yml:15: update your workflow using https://app.stepsecurity.io/secureworkflow/oidc-mytoken/server/codebase.yml/prerel?enable=pin","Warn: containerImage not pinned by hash: cmd/mytoken-server/Dockerfile:1: pin your Docker image by updating oidcmytoken/debian-wait-for:latest to oidcmytoken/debian-wait-for:latest@sha256:bd589bd43452b7810469d8ddbad23f2f3d4819eb9beff31ca5e144660f9d841f","Warn: containerImage not pinned by hash: cmd/mytoken-server/mytoken-notifier-server/Dockerfile:1: pin your Docker image by updating debian:stable to debian:stable@sha256:cd50e36013f749a1f86c6369b873e1ad607335480dc4bc2905396ec17ab0ce02","Warn: containerImage not pinned by hash: cmd/mytoken-server/mytoken-setup/Dockerfile:1: pin your Docker image by updating oidcmytoken/debian-wait-for:latest to oidcmytoken/debian-wait-for:latest@sha256:bd589bd43452b7810469d8ddbad23f2f3d4819eb9beff31ca5e144660f9d841f","Info:   0 out of   1 GitHub-owned GitHubAction dependencies pinned","Info:   0 out of   1 third-party GitHubAction dependencies pinned","Info:   0 out of   3 containerImage dependencies pinned"],"documentation":{"short":"Determines if the project has declared and pinned the dependencies of its build process.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#pinned-dependencies"}},{"name":"Signed-Releases","score":0,"reason":"Project has not signed or included provenance with any releases.","details":["Warn: release artifact v0.8.1 not signed: https://api.github.com/repos/oidc-mytoken/server/releases/109248853","Warn: release artifact v0.8.1 does not have provenance: https://api.github.com/repos/oidc-mytoken/server/releases/109248853"],"documentation":{"short":"Determines if the project cryptographically signs release artifacts.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#signed-releases"}},{"name":"SAST","score":10,"reason":"SAST tool is run on all commits","details":["Info: all commits (30) are checked with a SAST tool"],"documentation":{"short":"Determines if the project uses static code analysis.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#sast"}},{"name":"Branch-Protection","score":-1,"reason":"internal error: error during GetBranch(master): error during branchesHandler.query: internal error: githubv4.Query: Resource not accessible by integration","details":null,"documentation":{"short":"Determines if the default and release branches are protected with GitHub's branch protection settings.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#branch-protection"}},{"name":"Vulnerabilities","score":8,"reason":"2 existing vulnerabilities detected","details":["Warn: Project is vulnerable to: GO-2025-3845 / GHSA-qx2q-88mx-vhg7","Warn: Project is vulnerable to: GO-2025-3553 / GHSA-mh63-6h87-95cp"],"documentation":{"short":"Determines if the project has open, known unfixed vulnerabilities.","url":"https://github.com/ossf/scorecard/blob/f6ed084d17c9236477efd66e5b258b9d4cc7b389/docs/checks.md#vulnerabilities"}}]},"last_synced_at":"2025-08-22T05:50:08.529Z","repository_id":37885931,"created_at":"2025-08-22T05:50:08.529Z","updated_at":"2025-08-22T05:50:08.529Z"},"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":32604587,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-05-04T10:08:07.713Z","status":"ssl_error","status_checked_at":"2026-05-04T10:08:02.005Z","response_time":58,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["myproxy","mytoken","oidc","oidc-agent","oidc-token","oidc-token-management","openid","openid-connect"],"created_at":"2026-05-04T11:03:58.671Z","updated_at":"2026-05-04T11:04:02.011Z","avatar_url":"https://github.com/oidc-mytoken.png","language":"Go","funding_links":[],"categories":[],"sub_categories":[],"readme":"![mytoken logo](mytoken.png)\n\n[![License](https://img.shields.io/github/license/oidc-mytoken/server.svg)](https://github.com/oidc-mytoken/server/blob/master/LICENSE)\n![GitHub go.mod Go version](https://img.shields.io/github/go-mod/go-version/oidc-mytoken/server)\n[![Go Report](https://goreportcard.com/badge/github.com/oidc-mytoken/server)](https://goreportcard.com/report/github.com/oidc-mytoken/server)\n[![DeepSource](https://deepsource.io/gh/oidc-mytoken/server.svg/?label=active+issues\u0026show_trend=true)](https://deepsource.io/gh/oidc-mytoken/server/?ref=repository-badge)\n[![Release date](https://img.shields.io/github/release-date/oidc-mytoken/server.svg)](https://github.com/oidc-mytoken/server/releases/latest)\n[![Release version](https://img.shields.io/github/release/oidc-mytoken/server.svg)](https://github.com/oidc-mytoken/server/releases/latest)\n\n\u003c!-- [![Code size](https://img.shields.io/github/languages/code-size/oidc-mytoken/server.svg)](https://github.com/oidc-mytoken/server/tree/master) --\u003e\n\n# mytoken\n\n`Mytoken` is a web service to obtain OpenID Connect Access Tokens in an easy but secure way for extended periods of time\nand across multiple devices. In particular, `mytoken` was developed to provide OIDC Access Tokens to long-running\ncompute jobs.\n\nAccess Tokens can be obtained via so-called **`mytokens`**: A new token type that can be easily used as a Bearer token\nfrom any device. These `mytokens` can be restricted according to the particular use case to only allow the needed\nprivileges.\n\n`Mytoken` focuses on integration with the command line through our\n[command line client](https://github.com/oidc-mytoken/client)\n\u003c!-- and [oidc-agent](https://github.com/indigo-dc/oidc-agent) --\u003e\nbut also offers a web interface. A demo instance (using the prerel branch) is available\nat  [https://mytoken.data.kit.edu/](https://mytoken.data.kit.edu/).\nFor Production use [https://mytok.eu](https://mytok.eu)\n`Mytoken` is a central web service with the goal to easily obtain OpenID Connect access tokens across devices.\n\nDocumentation is available at [https://mytoken-docs.data.kit.edu/](https://mytoken-docs.data.kit.edu/).\n\nA go library for interacting with the mytoken server can be found\nat [https://github.com/oidc-mytoken/lib](https://github.com/oidc-mytoken/lib).\n\n## Building\n\n### Prerequisites\n\n- Go 1.25+\n- Node.js 22+ (for frontend)\n- npm 9+\n\n### Building the Frontend\n\nThe web interface is built with SvelteKit. To build it:\n\n```bash\n# Using the provided script (recommended)\n./scripts/build-frontend.sh\n\n# Or manually\ncd frontend\nnpm install\nnpm run build\ncp -r build/* ../internal/server/spa/dist/\n```\n\n### Building the Server\n\n```bash\n# Build the server (requires frontend to be built first)\ngo build ./cmd/mytoken-server\n\n# Build the setup tool\ngo build ./cmd/mytoken-server/mytoken-setup\n```\n\n### Development\n\nFor frontend development with hot reload:\n\n```bash\ncd frontend\nnpm install\nnpm run dev\n```\n\nThe dev server runs at http://localhost:5173 and proxies API requests to the Go backend at http://localhost:8000.\n\nSee [frontend/README.md](frontend/README.md) for more details.\n","project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Foidc-mytoken%2Fserver","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Foidc-mytoken%2Fserver","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Foidc-mytoken%2Fserver/lists"}