oauth2-server
oauth2-server copied to clipboard
clouway
OAuth2 Server Library
Support for 2 phase authentication will be required. Resources: - https://en.wikipedia.org/wiki/Multi-factor_authentication - https://en.wikipedia.org/wiki/Time-based_One-time_Password_Algorithm - https://tools.ietf.org/html/rfc6238 - https://github.com/wstrange/GoogleAuth
Security Considerations for oauth2 are described in: https://tools.ietf.org/html/rfc6819 They should be considered and handled.
OAuth2 library need to serve a discovery endpoint which to describes the endpoint locations: ``` javascript { "issuer": "https://accounts.google.com", "authorization_endpoint": "https://accounts.appdomain.com/o/oauth2/v2/auth", "token_endpoint": "https://www.appdomain.com/oauth2/v4/token", "userinfo_endpoint": "https://www.appdomain.com/oauth2/v3/userinfo", "revocation_endpoint": "https://accounts.appdomain.com/o/oauth2/revoke", "jwks_uri": "https://appdomain.com/oauth2/v3/certs", "response_types_supported":...