idp-server

Overview

This library provides java api supported OAuth2.0 and OIDC spec.

Architecture

supported spec

1. RFC6749 The OAuth 2.0 Authorization Framework
   1. authorization code grant
   2. implicit grant
   3. resource owner password credentials grant
   4. client credentials grant
2. OpenID Connect Core 1.0 incorporating errata set 1
   1. authorization code flow
   2. implicit flow
   3. hybrid flow
   4. request object
      1. signature
      2. encryption
      3. signature none
   5. userinfo
3. OpenID Connect Discovery 1.0 incorporating errata set 1
4. OpenID Connect Client-Initiated Backchannel Authentication Flow - Core 1.0
   1. poll mode
   2. ping mode
   3. push mode
5. RFC7009 OAuth 2.0 Token Revocation
6. RFC7636 Proof Key for Code Exchange by OAuth Public Clients
7. RFC7662 OAuth 2.0 Token Introspection
8. Financial-grade API Security Profile 1.0 - Part 1: Baseline
9. Financial-grade API Security Profile 1.0 - Part 2: Advanced

supported client authentication

1. client_secret_post
2. client_secret_basic
3. client_secret_jwt
4. private_key_jwt
5. tls_client_auth
6. self_signed_tls_client_auth

License

Apache License, Version 2.0

verifiable-credentials

pre setup

1. create wallet
   1. https://metamask.io/
2. create alchemy account
   1. https://www.alchemy.com/
3. create apikey of sepolia at alchemy
4. send eth to wallet
   1. https://sepoliafaucet.com/

sample server

docker-compose

c. fix your configuration

export ADDRESS=0xf1232f840f3ad7d23fcdaa84d6c66dac24efb198
export PRIVATE_KEY=d8b595680851765f38ea5405129244ba3cbad84467d190859f4c8b20c1ff6c75
export WEB3_URL=wss://eth-sepolia.g.alchemy.com/v2/xxx
export VERIFICATION_Method=did:web:assets.dev.trustid.sbi-fc.com#key-2
export CHAIN=ethereum_sepolia

docker-compose up -d

bootRun

./gradlew bootRun

./init.sh

e2e

cd e2e
jest test