Skip to content

OpenID Connect Relying Party (RP) web client (like a web site) example

License

Notifications You must be signed in to change notification settings

madarche/oidc-rp-web-example

Repository files navigation

oidc-rp-web-example

Build Status

OpenID Connect Relying Party (RP) web client (like a web site) example

Architecture

This example needs an OIDC Server (OP) and optionally an OAuth2 Resource Server (https://github.com/madarche/oauth2-resource-server-example).

Architecture schema

Usage

It is assumed that this application will run as https://oidc-rp-web-example.local.test/. One can change this URL with whatever other URL.

First, write the config.tom config file.

Optionally set the resources.url property with the URL of the OAuth2 Resource Server route.

cp config.toml.example config.toml
vim config.toml

Next, register the RP in the OP with the following properties:

  • client_id : the same as the client_id set in the config.toml
  • redirect_uris : https://oidc-rp-web-example.local.test/logged_in
  • post_logout_redirect_uris : https://oidc-rp-web-example.local.test/logged_out
  • application_type : web
  • token_endpoint_auth_method : client_secret_basic
  • client_secret : the same as the client_secret set in config.toml

Then, install the needed packages and start the application:

npm ci
npm start

Finally, visit the application at https://oidc-rp-web-example.local.test/

When the OP uses self-signed certificate

If the OP uses a self-signed certificate, one gets the following error:

RequestError: self signed certificate

The solution is, prior to the npm start command, to specify the certificate to Node.js, for example:

export NODE_EXTRA_CA_CERTS=/etc/nginx/ssl/cert/local.test.crt

About

OpenID Connect Relying Party (RP) web client (like a web site) example

Topics

Resources

License

Stars

Watchers

Forks

Releases

No releases published

Packages

No packages published