mockoidc
mockoidc copied to clipboard
oauth2-proxy
A Mock OIDC Server for Unit & Integration Tests
Services often need to add their own claims to tokens to manage what users are allowed to do in a system. OIDC providers like Okta, Auth0, and others allow their...
- Create a custom user type in order to add new claims; it is in the test package space in order to be external to mimic how users would need...
Change the logic that checks for the "openid" token in the "scope" parameter value to ignore ordering. The Scopes section of the specification appears to only require that "openid" be...
Since this flow is intended to be adopted by native and web apps, most of the services (such as auth0 for instance) allow to omit `client_secret`, as it's anyway insecure....
It would be extremely helpful to have an example unit test and/or integration test to see how this all fits together.
I may be missing a section in the specification that discusses ordering dependencies, but my reading of https://openid.net/specs/openid-connect-basic-1_0.html#Scopes is that the order of the tokens in the "scope" parameter don't...
The Subject (sub) field is not returned on userinfo requests. According to https://connect2id.com/products/server/docs/api/userinfo#claims this is required. Added the Subject field and wired it like the other fields.
I encountered a data race when running parallelized tests with this library. The stack demonstrated a race between `NewSession()` performing a write operation on a map and `GetSessionByID()` performing a...
In using `mockoidc` with browser based testing scenarios for my web app, and I noticed that I don't have a lot of control/stability over how many times the OIDC IdP...
Metadata
Owner
Metadata
A Mock OIDC Server for Unit & Integration Tests