# authorization-server **Repository Path**: kyojunwang/authorization-server ## Basic Information - **Project Name**: authorization-server - **Description**: Oauth2.1 采用spring官方最新授权框架 : spring-security-oauth2-authorization-server - **Primary Language**: Java - **License**: Apache-2.0 - **Default Branch**: master - **Homepage**: None - **GVP Project**: No ## Statistics - **Stars**: 0 - **Forks**: 2 - **Created**: 2025-02-10 - **Last Updated**: 2025-02-10 ## Categories & Tags **Categories**: Uncategorized **Tags**: None ## README ## 介绍 Spring 授权服务器 Spring Authorization Server 是一个框架,它提供[OAuth 2.1](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07)和[OpenID Connect 1.0](https://openid.net/specs/openid-connect-core-1_0.html)规范以及其他相关规范的实现。[它建立在Spring Security](https://spring.io/projects/spring-security)之上,为构建 OpenID Connect 1.0 身份提供者和 OAuth2 授权服务器产品提供安全、轻量级和可定制的基础。 ## 功能列表 Spring Authorization Server 支持以下功能: ### 授权模式(Authorization Grant) - 授权码(`Authorization Code`) - [用户同意(User Consent)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oauth2-authorization-endpoint) - 客户凭证(`Client Credentials`) - 刷新令牌(`Refresh Token`) > - OAuth 2.1 授权框架 > - [授权码授予](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07#section-4.1) > - [客户凭证授予](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07#section-4.2) > - [刷新代币授予](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07#section-4.3) > - OpenID Connect 核心 1.0([规范](https://openid.net/specs/openid-connect-core-1_0.html)) > - [授权代码流程](https://openid.net/specs/openid-connect-core-1_0.html#CodeFlowAuth) ### 令牌格式(Token Formats) - Self-contained (JWT) - Reference (Opaque) ### 客户端认证(Client Authentication) - `client_secret_basic` - `client_secret_post` - `client_secret_jwt` - `private_key_jwt` - `none`(公共客户) > - `OAuth 2.1` 授权框架([客户端身份验证](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07#section-2.4)) > - 用于` OAuth 2.0`客户端身份验证的 `JSON Web `令牌 `(JWT) `配置文件 > - `OAuth `公共客户端 (PKCE) 代码交换的证明密钥 ### 协议端点(Protocol Endpoints) - [OAuth2 授权端点(`OAuth2 Authorization Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oauth2-authorization-endpoint) - [OAuth2 令牌端点(`OAuth2 Token Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oauth2-token-endpoint) - [OAuth2 令牌自省端点(`OAuth2 Token Introspection Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oauth2-token-introspection-endpoint) - [OAuth2 令牌撤销端点(`OAuth2 Token Revocation Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oauth2-token-revocation-endpoint) - [OAuth2 授权服务器元数据端点(`OAuth2 Authorization Server Metadata Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oauth2-authorization-server-metadata-endpoint) - [JWK 设置端点(`JWK Set Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#jwk-set-endpoint) - [OpenID Connect 1.0 提供商配置端点(`OpenID Connect 1.0 Provider Configuration Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oidc-provider-configuration-endpoint) - [OpenID Connect 1.0 用户信息端点(`OpenID Connect 1.0 UserInfo Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oidc-user-info-endpoint) - [OpenID Connect 1.0 客户端注册端点(`OpenID Connect 1.0 Client Registration Endpoint`)](https://docs.spring.io/spring-authorization-server/docs/0.4.2/reference/html/protocol-endpoints.html#oidc-client-registration-endpoint) > - OAuth 2.1 授权框架 > - [授权端点(`Authorization Endpoint`)](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07#section-3.1) > - [令牌端点(`Token Endpoint`)](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-07#section-3.2) > - OAuth 2.0 令牌自省(`OAuth 2.0 Token Introspection`) > - OAuth 2.0 令牌撤销(`OAuth 2.0 Token Revocation`) > - OAuth 2.0 授权服务器元数据(`OAuth 2.0 Authorization Server Metadata`) > - JSON 网络密钥 (`JWK`) > - OpenID Connect Discovery 1.0 > - [提供商配置端点(Provider Configuration Endpoint)](https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig) > - OpenID Connect 核心 1.0(`OpenID Connect Core 1.0 `) > - [用户信息端点(`UserInfo Endpoint`)](https://openid.net/specs/openid-connect-core-1_0.html#UserInfo) > - OpenID Connect 动态客户端注册 1.0(`OpenID Connect Dynamic Client Registration 1.0 `) > - [客户端注册端点(`Client Registration Endpoint`)](https://openid.net/specs/openid-connect-registration-1_0.html#ClientRegistration) > - [客户端配置端点(`Client Configuration Endpoint`)](https://openid.net/specs/openid-connect-registration-1_0.html#ClientConfigurationEndpoint)