Search Options

Results per page
Sort
Preferred Languages
Advance

Results 1 - 10 of 39 for id_token (0.26 sec)

  1. docs/sts/wso2.md

    Once WSO2 is up and running, configure WSO2 to generate Self contained id_tokens. In OAuth 2.0 specification there are primarily two ways to provide id_tokens
    
    1. The id_token is an identifier that is hard to guess. For example, a randomly generated string of sufficient length, that the server handling the protected resource can use to lookup the associated authorization information.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Sep 29 04:28:45 UTC 2022
    - 8.7K bytes
    - Viewed (0)
  2. docs/sts/dex.yaml

    expiry:
      signingKeys: "3h"
      idTokens: "3h"
    
      # Options for controlling the logger.
      logger:
        level: "debug"
        format: "text" # can also be "json"
    
    # Default values shown below
    oauth2:
      # use ["code", "token", "id_token"] to enable implicit flow for web-only clients
      responseTypes: [ "code", "token", "id_token" ] # also allowed are "token" and "id_token"
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jul 15 11:55:55 UTC 2020
    - 2.7K bytes
    - Viewed (0)
  3. docs/sts/web-identity.md

    - The redirection URI (callback handler) receives the OAuth2 callback, verifies the state parameter, and obtains a Token.
    - Using the id_token the callback handler further talks to Google OAuth2 Token URL to obtain an JWT id_token.
    - Once obtained the JWT id_token is further sent to STS endpoint i.e MinIO to retrieve temporary credentials.
    - Temporary credentials are displayed on the browser upon successful retrieval.
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jul 10 20:16:44 UTC 2024
    - 18.9K bytes
    - Viewed (0)
  4. docs/sts/web-identity.py

        # we can now use the id_token as much as we want to access protected resources.
        tokens = json.loads(id_token_response.text)
        id_token = tokens['id_token']
    
        response = sts_client.assume_role_with_web_identity(
            RoleArn='arn:aws:iam::123456789012:user/svc-internal-api',
            RoleSessionName='test',
            WebIdentityToken=id_token,
            DurationSeconds=3600
        )
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Wed Jul 28 01:37:51 UTC 2021
    - 2.9K bytes
    - Viewed (0)
  5. docs/sts/web-identity.go

    	flag.IntVar(&port, "port", 8080, "Port")
    }
    
    func implicitFlowURL(c oauth2.Config, state string) string {
    	var buf bytes.Buffer
    	buf.WriteString(c.Endpoint.AuthURL)
    	v := url.Values{
    		"response_type": {"id_token"},
    		"response_mode": {"form_post"},
    		"client_id":     {c.ClientID},
    	}
    	if c.RedirectURL != "" {
    		v.Set("redirect_uri", c.RedirectURL)
    	}
    	if len(c.Scopes) > 0 {
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Fri May 19 09:13:33 UTC 2023
    - 7.8K bytes
    - Viewed (0)
  6. docs/sts/README.md

    >
    > - [**AssumeRole**](https://github.com/minio/minio/blob/master/docs/sts/assume-role.md)
    > - [**AD/LDAP**](https://github.com/minio/minio/blob/master/docs/sts/ldap.md)
    
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Oct 25 00:44:15 UTC 2022
    - 7.8K bytes
    - Viewed (0)
  7. docs/sts/client-grants.go

    	defer resp.Body.Close()
    	if resp.StatusCode != http.StatusOK {
    		return nil, fmt.Errorf("%s", resp.Status)
    	}
    
    	var idpToken JWTToken
    	if err = json.NewDecoder(resp.Body).Decode(&idpToken); err != nil {
    		return nil, err
    	}
    
    	return &credentials.ClientGrantsToken{Token: idpToken.AccessToken, Expiry: idpToken.Expiry}, nil
    }
    
    func main() {
    	flag.Parse()
    	if clientID == "" || clientSecret == "" {
    		flag.PrintDefaults()
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Thu Aug 19 01:35:22 UTC 2021
    - 3.3K bytes
    - Viewed (0)
  8. docs/sts/dex.md

    time="2020-07-12T20:45:50Z" level=info msg="config connector: mock"
    time="2020-07-12T20:45:50Z" level=info msg="config connector: local passwords enabled"
    time="2020-07-12T20:45:50Z" level=info msg="config response types accepted: [code token id_token]"
    time="2020-07-12T20:45:50Z" level=info msg="config using password grant connector: local"
    time="2020-07-12T20:45:50Z" level=info msg="config signing keys expire after: 3h0m0s"
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Tue Mar 21 06:38:06 UTC 2023
    - 3.8K bytes
    - Viewed (0)
  9. internal/config/identity/openid/provider/keycloak.go

    package provider
    
    import (
    	"encoding/json"
    	"errors"
    	"fmt"
    	"net/http"
    	"net/url"
    	"path"
    	"strings"
    	"sync"
    )
    
    // Token - parses the output from IDP id_token.
    type Token struct {
    	AccessToken string `json:"access_token"`
    	Expiry      int    `json:"expires_in"`
    }
    
    // KeycloakProvider implements Provider interface for KeyCloak Identity Provider.
    Registered: Sun Nov 03 19:28:11 UTC 2024
    - Last Modified: Sun Jul 14 18:12:07 UTC 2024
    - 4.6K bytes
    - Viewed (0)
  10. src/main/java/org/codelibs/fess/sso/aad/AzureAdAuthenticator.java

        protected void validateNonce(final StateData stateData, final AuthenticationResult authData) {
            final String idToken = authData.getIdToken();
            if (logger.isDebugEnabled()) {
                logger.debug("idToken: {}", idToken);
            }
            try {
                final JWTClaimsSet claimsSet = JWTParser.parse(idToken).getJWTClaimsSet();
                if (claimsSet == null) {
    Registered: Thu Oct 31 13:40:30 UTC 2024
    - Last Modified: Thu Feb 22 01:53:18 UTC 2024
    - 28.2K bytes
    - Viewed (0)
Back to top