spring-authorization-serv
angular-spa-sample
spring-authorization-serv | angular-spa-sample | |
---|---|---|
1 | 2 | |
- | 28 | |
- | - | |
- | 4.0 | |
- | about 1 month ago | |
TypeScript | ||
- | MIT License |
Stars - the number of stars that a project has on GitHub. Growth - month over month growth in stars.
Activity is a relative number indicating how actively a project is being developed. Recent commits have higher weight than older ones.
For example, an activity of 9.0 indicates that a project is amongst the top 10% of the most actively developed projects that we are tracking.
spring-authorization-serv
-
Keycloak: Open-Source Identity and Access Management
Spring has an oauth2 authorization server that is currently in early release: https://github.com/spring-projects/spring-authorization-serv...
I'm building something with it currently and it's quite nice, especially if you are already familiar with spring security. Documentation is quite sparse tho.
angular-spa-sample
-
Keycloak: Open-Source Identity and Access Management
There is a document meant for best practices for browser-based apps such as SPA/PWA, which includes use of code flow.
https://datatracker.ietf.org/doc/html/draft-ietf-oauth-brows...
(disclaimer - co-author)
The catch is that since the client web origin and AS web origin are often different sites, the AS has to actually implement CORS on their token endpoint.
Some implementations unfortunately (perhaps due to a misunderstanding about what CORS is meant to accomplish) make this a per-tenant/per-installation allowlist of origins on the AS.
Auth0 and Ping Identity (my employer) document CORS settings for products. I'm not sure about AWS and you might need to add CORS via API gateway. Azure AD supports CORS for the token endpoint, but they may limit domains in some manner (such as redirect uri of registered clients).
FWIW, I created a demo ages ago (at https://github.com/pingidentity/angular-spa-sample), which by default is configured to target Google for OpenID Connect and uses localhost for local development/testing. It hasn't aged particularly well in terms of library choices, but I do keep it running.
A deployment based on older Angular is also at https://angular-appauth.herokuapp.com to try - IIRC I used a node server just to deal with wildcard path resolution of the index file, but there's otherwise no local logic.
-
question on how to build a login system
oh well you alrady have a provider then! here is the boilerplate to integrate with ping https://github.com/pingidentity/angular-spa-sample
What are some alternatives?
fusionauth-localization - FusionAuth translations
pingone-node-sdk - PingOne Node SDK
keycloak-demo
nestjs-api-boilerplate - Nestjs API Boilerplate 😍 💪 🔥 : Typescript, Postgresql, TypeORM, Swagger for Api documentation, Passport-JWT authentication, Jest, Env configuration, Migrations, Seeds, Docker, Redis, AWS S3, and best application architecture.
spring-authorization-server - Spring Authorization Server
a12n-server - An open source lightweight OAuth2 server
keycloak-ui - keycloak-ui repo is moved.
pyoidc - A complete OpenID Connect implementation in Python