https://github.com/hellocoop/client-as

Authorization Server for Mobile Apps
https://github.com/hellocoop/client-as

Last synced: 10 months ago
JSON representation

Authorization Server for Mobile Apps

• Host: GitHub
• URL: https://github.com/hellocoop/client-as
• Owner: hellocoop
• Created: 2024-03-16T17:25:15.000Z (over 2 years ago)
• Default Branch: main
• Last Pushed: 2024-07-30T16:55:44.000Z (almost 2 years ago)
• Last Synced: 2025-05-29T06:48:52.019Z (about 1 year ago)
• Language: TypeScript
• Size: 313 KB
• Stars: 0
• Watchers: 2
• Forks: 2
• Open Issues: 1
• Metadata Files:
  • Readme: README.md

Awesome Lists containing this project

README

          
# client_as

Authorization Server for Mobile Apps

## Environment Configuration

### PORT

- default 3000

http port to listen on 

### HOST

- default `http://localhost:${PORT}`

hostname to be used in issuer ('iss' claim in access_token) -- will be `https:${HOST}` 

### NODE_ENV

- default is `undefined`

`'production'|'development'`

### REDIS_HOST

tbd

### USE_DPOP

- default is `undefined`

set to any value to enable checking for DPoP header and returns `"token_type":"DPoP"` rather than `"token_type":"Bearer"` from token endpoint

## Webview 

```

POST /token HTTP/1.1

Host: app.tiltingpoint.com

Content-Type: application/x-www-form-urlencoded

grant_type=cookie_token

```

returns

```

200

{

    "loggedIn":false,

    "nonce":"1234567890"

}

```

User is not logged in. Start a login flow with the returned nonce value. Once logged in, it will return

```

200

{

    "loggedIn":true

}

```

User is logged in. access_token and refresh_token cookies have been created and updated

## SDK

After the user has successfully logged in, call 

```

POST /token HTTP/1.1

Host: app.tiltingpoint.com

Content-Type: application/x-www-form-urlencoded

DPoP: zzzzz

grant_type=authorization_code&

client_id=SDK-1.0.0

code=

```

will return

```

{

    "access_token": "xxx",

    "token_type": "DPoP",

    "refresh_token": "yyy",

    "expires_in": 300

}

```

Refreshing an access token

```

POST /token HTTP/1.1

Host: app.tiltingpoint.com

Content-Type: application/x-www-form-urlencoded

DPoP: zzzzz

Refresh

grant_type=refresh_token&

refresh_token=yyy

```

## Endpoints

### /token // public

grant_type="cookie_token"

device_info ???

### /jwks

### /revoke

### /.wellknown/oauth-authorization-server

### /login

    - called by client after successful login

## Development

- clone repo

- `npm i` to install all node modules

- `npx playwright install` to install Playwright binaries to test with

`npm test` will run fastify.inject() tests

`npm run playwright` will start all the services with docker compose and then run the Playwright tests for browser interactions