This bundle is a complete OAuth2 Server Bundle for .
Note 1: this bundle is still in development. The first stable release will be tagged as
v1.0.x
. All tagsv0.x.y
must be considered as unstable.
It provides the following official plugins:
-
Access token client_manager:
- Simple string access token
- JWT access token
-
Access token type:
- Bearer access token (RFC6750)
- MAC access (IETF draft) - The implementation is stopped until the specification has not reach maturity
-
Exception client_manager
-
Scope client_manager (RFC6749, section 3.3)
-
Clients:
- Public clients (RFC6749, section 2.1)
- Password clients (RFC6749, section 2.3.1)
- SAML clients (RFC7522) - Help requested!
- JWT clients (RFC7523)
- Unregistered clients (RFC6749, section 2.4)
-
Endpoints:
- Authorization endpoint (RFC6749, section 3.1)
- Token endpoint (RFC6749, section 3.2)
- Token revocation endpoint (RFC7009)
-
Grant types:
- Authorization code grant type (RFC6749, section 4.1)
- Implicit grant type (RFC6749, section 4.2)
- Resource Owner Password Credentials grant type (RFC6749, section 4.3)
- Client credentials grant type (RFC6749, section 4.4)
- Refresh token grant type (RFC6749, section 6)
- SAML grant type (RFC7522) - Help requested!
- JWT Bearer token grant type (RFC7523)
-
OpenID Connect
This bundle uses the OAuth2 Server Library.
The release process is described here.
This bundle needs:
- .
- .
SensioFrameworkExtraBundle
to handlePSR-7
requests and responses.PuliBundle
for resources support.
It has been successfully tested using:
- PHP:
PHP 5.6
,PHP 7
andHHVM
. - Symfony:
v2.7.x
.
This bundle should work fine on Symfony: v3.0.x
(tests will be added later).
The preferred way to install this library is to rely on Composer:
composer require "spomky-labs/oauth2-server-bundle" "dev-master"
See this page for more information.
Requests for new features, bug fixed and all other ideas to make this bundle useful are welcome. Please follow these best practices.
This bundle is release under MIT licence.