Hello Pieter, I'm also interested (https://github.com/zntrio/solid), my OIDC framework is not focused on building a compliant OIDC server but produce a restricted and harmonized feature set according to your authentication use cases (human, act as human, software, machine, iot). It mostly like libsodium is (a high-level api) for low-level encryption operations (CHACHA20/Poly130).
The project is quite new and focused on authorization server building blocks without the wire protocol constraints. I tried to design flow without the wire protocol constraints in order to make the building blocks useable in different context (standard / HTTP, or IoT / CoAP). Regards, Le lun. 22 juin 2020 à 17:25, Filip Skokan <panva...@gmail.com> a écrit : > Hello Pieter, > > I’m interested for my open source project. > > Filip > > Odesláno z iPhonu > > 22. 6. 2020 v 15:51, Pieter Philippaerts <pieter.philippae...@kuleuven.be > >: > > > Hello everyone, > > As part of a research project, I've created a test suite to test OAuth 2.0 > implementations and measure how well they implement the various > MAY/SHOULD/MUST security recommendations in the OAuth standards. (It also > includes test cases for the OIDC and FAPI RO/RW recommendations.) The tool > is practically finished and will be made available to the public in a few > months. > > I'm currently working on a security analysis of the OAuth2 ecosystem > (i..e. I'm using the tool to test various OAuth/OIDC implementations) and > I'm still looking for more candidates to test. If you are the author of an > OAuth library or if you are running an OAuth service, feel free to contact > me to get involved. Apart from my gratitude, I can offer you a free > security audit of your product :-) > > Regards, > Pieter > > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > > _______________________________________________ > OAuth mailing list > OAuth@ietf.org > https://www.ietf.org/mailman/listinfo/oauth > -- Thibault Normand "Il existe moins bien mais c'est plus cher !" http://www.zenithar.org
_______________________________________________ OAuth mailing list OAuth@ietf.org https://www.ietf.org/mailman/listinfo/oauth
