oauth-2.0 Questions
5
Solved
I'm trying to validate access tokens against at_hash. Token header is like this
{
"typ": "JWT",
"alg": "RS256",
"x5t": "MclQ7Vmu-1e5_rvdSfBShLe82eY",
"kid": "MclQ7Vmu-1e5_rvdSfBShLe82eY"
}
Ho...
Turdine asked 22/3, 2016 at 11:1
4
Solved
Seems that with Auth0, when in a M2M flow, we need to pass the audience parameter in the authorization request, and the the token will be issued for such audience
curl --request POST \
--url https...
Contactor asked 24/5, 2022 at 11:59
3
I am successfully getting Postman's Get Access Token feature to work. I need to see the request it's making, though, so I can make the call in code.
Any ideas how to do that?
3
I am trying to call Google's Vertex AI API via REST to something like:
https://us-central1-aiplatform.googleapis.com/v1/projects/...
I am having trouble with figuring out where to get the "acc...
Calendra asked 11/5, 2023 at 3:1
11
Solved
Steps taken so far:
Set up new user pool in cognito
Generate an app client with no secret; let's call its id user_pool_client_id
Under the user pool client settings for user_pool_client_id check ...
Dipterocarpaceous asked 10/5, 2018 at 2:39
5
I see only the following details in
https://code.google.com/apis/console/b/0/#project:xxxxx:access
Client ID for installed applications
Client ID: 477522346600.apps.googleusercontent.com
Applic...
Faena asked 21/3, 2013 at 12:4
3
I'm a Django newbie and am trying to create an API to the backend for use by iOS client. Currently I am testing my API access with curl.
I have successfully generated access tokens using:
curl -X...
2
Solved
I have an OAuth2 token like this...
{{
"access_token": "xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx",
"expires_in": "3600",
"refresh_token": "xxxxxxxxxxxxxxxxxx",
"token_type": "Bearer",
}}
a...
Adenoidal asked 2/6, 2017 at 20:41
2
Solved
I could be completely off basis here on how this works, but this is what I'm looking to achieve.
In AAD I have
an App Registration called backend-api that represents an HTTP API
an App Registratio...
Galvanism asked 17/5, 2019 at 17:40
5
Solved
I have the following code (copied from Microsoft Learn), that was working fine with Microsoft.Graph 4.54.0
var authProvider = new DelegateAuthenticationProvider(async (request) => {
// Use Micr...
Rompish asked 1/3, 2023 at 14:19
1
I have a web application that is leveraging Keycloak for IdM.
I am using the Resource Owner Password Credentials or Direct Grant flow for authentication which uses REST API calls to /auth/realms/...
Paratrooper asked 25/4, 2019 at 20:17
2
Solved
I referred this question on SO: Google oauth 400 response: No 'Access-Control-Allow-Origin' header is present on the requested resource
but the solution suggested is for Javascript web app ...
Pedestrian asked 22/2, 2018 at 10:33
4
Solved
The following code gives me Azure AD security token, I need to validate that token is valid or not. How to achieve this?
// Get OAuth token using client credentials
string tenantName = "mytest.on...
Theodoratheodore asked 5/10, 2016 at 6:6
4
Solved
I would like to be able to disable external authorization for a specific path of my App.
Similiar to this SO: Kubernetes NGINX Ingress: Disable Basic Auth for specific path
Only difference is us...
Unconventionality asked 17/6, 2020 at 20:57
3
I am working on an e-commerce website. Our website provides the option to signup using google account (using OAuth).
Our website is responsive and can be accessed using mobile devices, however it i...
Callable asked 29/9, 2021 at 4:39
5
I followed the Spring Security 5.0 official reference documentation and sample codes oauth2login to setup OAuth2/OIDC authentication in my project, but it failed and I got the following exception w...
Elaterium asked 16/3, 2018 at 7:50
4
Solved
I am trying to use Google Oauth API to get userinfo.
It works perfectly for Google Plus API but I am trying to create a backup in case the user doesn't have google plus account.
The authentication ...
Prochora asked 22/12, 2012 at 23:49
2
Solved
I need to create an organizational feed to host nuget packages shared among projects on our Azure DevOps environment.
After several unsuccesful attempts and research, I discovered that the only wa...
Playground asked 18/2, 2020 at 14:49
1
Solved
I'm trying to use the chrome.identity.launchWebAuthFlow method to authenticate the Google user's login in my chrome extension to get his email address, and my code is:
Manifest.json
"key": "Key_...
Rechabite asked 1/10, 2017 at 14:14
1
Solved
I'm using OIDC with Identity Server 4 which is authenticating with Okta.
I'm calling var result = await HttpContext.AuthenticateAsync("Identity.External"); in a callback method.
I chose I...
Interjacent asked 10/5, 2023 at 7:33
13
Solved
I don't know if I just have some kind of blind spot or what, but I've read the OAuth 2 spec many times over and perused the mailing list archives, and I have yet to find a good explanation of why t...
Suomi asked 22/9, 2011 at 23:52
1
I am wanting to use Keycloak to authorise access for my API.
I have got the relevant scopes defined, and these are coming back in the access token as expected:
{
... claims ...
"scope": "openi...
3
Solved
I use Google OAuth2 for my codeigniter application and i send request using the HybridIgniter.
REDIRECT URIS : http://localhost/college-rating-system/hauth/endpoint.
JAVASCRIPT ORIGINS : http://l...
Talbert asked 10/2, 2015 at 12:20
8
We recently made a switch from Implicit Grant Flow to Authorization Code Flow with PKCE for our application, and now we're having some trouble getting access tokens from Azure AD from Postman. The ...
Brutality asked 15/4, 2020 at 14:22
3
Solved
Edit: To clarify, getting the authorization code works as expected. It is purely the step of exchanging the authorization code for tokens that fails.
I am trying to implement the authorization code...
© 2022 - 2024 — McMap. All rights reserved.