Boruta live example

This is a running example of an OAuth provider implemented with Boruta. Please note that this is a work in progress.

This server is intended to follow :

RFC 6749 - The OAuth 2.0 Authorization Framework
RFC 7662 - OAuth 2.0 Token Introspection
RFC 7009 - OAuth 2.0 Token Revocation
RFC 7636 - Proof Key for Code Exchange by OAuth Public Clients

The core of this project is open source, the code is available here

POST /oauth/token
GET /oauth/authorize
POST /oauth/introspect
POST /oauth/revoke

client_id : 6a2f41a3-c54c-fce8-32d2-0324e1c32e20
client_secret : 777
redirect_uri : http://redirect.uri

curl -X POST \
  http://oauth.boruta.patatoid.fr/oauth/token \
  -H 'Content-Type: application/x-www-form-urlencoded' \
  -d 'client_id=6a2f41a3-c54c-fce8-32d2-0324e1c32e20&client_secret=777&grant_type=client_credentials'