https://github.com/onatm/heimdall

Implicit OpenID Connect (OIDC) and OAuth 2.0 Provider with opinionated identity management
https://github.com/onatm/heimdall

identity-management implicit-flow nodejs oauth2 oauth2-provider oidc oidc-provider

Last synced: about 1 month ago
JSON representation

Implicit OpenID Connect (OIDC) and OAuth 2.0 Provider with opinionated identity management

• Host: GitHub
• URL: https://github.com/onatm/heimdall
• Owner: onatm
• License: mit
• Created: 2019-07-28T20:49:37.000Z (over 5 years ago)
• Default Branch: master
• Last Pushed: 2023-03-01T15:54:43.000Z (almost 2 years ago)
• Last Synced: 2024-10-28T09:35:05.140Z (3 months ago)
• Topics: identity-management, implicit-flow, nodejs, oauth2, oauth2-provider, oidc, oidc-provider
• Language: JavaScript
• Homepage:
• Size: 2.11 MB
• Stars: 3
• Watchers: 3
• Forks: 0
• Open Issues: 6
• Metadata Files:
  • Readme: README.md
  • License: LICENSE

Awesome Lists containing this project

README

        
# heimdall

**Implicit** OpenID Connect (OIDC) and OAuth 2.0 Provider with opinionated identity management.

`heimdall` is heavily focused on providing authentication and authorization mechanism to **SPA**s by generating `id_token` and `access_token` via implicit flow.

## Roadmap

There are some missing functionality that should be implemented before *v1.0*.

- [x] Split handlers into multiple classes (or files)

- [x] Decision about custom `scopes` and `claims`

- [x] Implement todos written in comments

- [x] Extract account management code

- [x] Add `mongodb` store

- [x] Add `memory` store

- [x] Decision about configurable parameters

- [x] Pass configuration from `YAML` files

- [x] Convert `parseAuthorization` function to a middleware

- [ ] Silent callback

- [ ] Api resource scopes

- [ ] Create sample app repository

- [ ] Encrypt provider `access_token` in `mongodb`

- [ ] Add logging

- [ ] Add proper documentation and explain the decisions made (e.g. why there is no consent)