Hi all, plese find the sample request and response. *Authorization Code Grant Type*
request https://testapp1996.auth0.com/authorize?audience=https://testapp1996.auth0.com/api/v2/&scope=openid&response_type=code&client_id=kyq73nra4j5KSm6xg8hoqPltt12Q3UvQ&redirect_uri=https://www.google.lk&state=123 response https://www.google.lk/?code=z2oK4XkLUAiACfeG&state=123 Authorization code : z2oK4XkLUAiACfeG *get-Access token* endpoint https://testapp1996.auth0.com/oauth/token payload { "grant_type": "authorization_code", "client_id": "kyq73nra4j5KSm6xg8hoqPltt12Q3UvQ", "client_secret": "PkyrWSBrqQB7TXJdpcTZ8RhqqL9EAZbG57a9Lzv9cOQuMv90cJwgOyAvtgHkhp1p", "code": "z2oK4XkLUAiACfeG", "redirect_uri": "https://www.google.lk"; } response { "access_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6Ik5UZzROVFpEUlVSQlJUSTNNVEkxT1RSQ01FVTRNRFl4UkVVMlFqQXhRakkyUWtNMFJrRTRPQSJ9.eyJpc3MiOiJodHRwczovL3Rlc3RhcHAxOTk2LmF1dGgwLmNvbS8iLCJzdWIiOiJhdXRoMHw1YzBkZjA2ZmU5NzhjNTJlMTU0ZjFkMzUiLCJhdWQiOlsiaHR0cHM6Ly90ZXN0YXBwMTk5Ni5hdXRoMC5jb20vYXBpL3YyLyIsImh0dHBzOi8vdGVzdGFwcDE5OTYuYXV0aDAuY29tL3VzZXJpbmZvIl0sImlhdCI6MTU0NjgzNTk5NiwiZXhwIjoxNTQ2OTIyMzk2LCJhenAiOiJreXE3M25yYTRqNUtTbTZ4Zzhob3FQbHR0MTJRM1V2USIsInNjb3BlIjoib3BlbmlkIn0.tS_4FK-tscfvtLNR9i2CsgoNy6I8LWUbUgzSOHeb9X6NkNbN7fzuY2gOVcwz3P0sFdHB6yfe4epTUzNivWJCcuGq_vAaLCVcSz_2cTkMJOTo_3Te149iqclY82SVAcih3ydIH7pPGJnXkgXG7-PvrIIhOWSe_w-tUA92j6hr0-pjASbEpY_es8keT6xnsY979dKiW3kujmlwawjXdwj39WTBXXx05ZXdlrG8vtANqGj9fazkbhHGDhWVpGzStPX7fnouf_fzHUUhw8yixCvhit2L7xQXbY61TpS3-CfDyOjfFk77PYE5W5gd3AwIbqWBPoKajYcTp0lpPz73BV-8rQ", "id_token": "eyJ0eXAiOiJKV1QiLCJhbGciOiJSUzI1NiIsImtpZCI6Ik5UZzROVFpEUlVSQlJUSTNNVEkxT1RSQ01FVTRNRFl4UkVVMlFqQXhRakkyUWtNMFJrRTRPQSJ9.eyJpc3MiOiJodHRwczovL3Rlc3RhcHAxOTk2LmF1dGgwLmNvbS8iLCJzdWIiOiJhdXRoMHw1YzBkZjA2ZmU5NzhjNTJlMTU0ZjFkMzUiLCJhdWQiOiJreXE3M25yYTRqNUtTbTZ4Zzhob3FQbHR0MTJRM1V2USIsImlhdCI6MTU0NjgzNTk5NiwiZXhwIjoxNTQ2ODcxOTk2LCJhY3IiOiJodHRwOi8vc2NoZW1hcy5vcGVuaWQubmV0L3BhcGUvcG9saWNpZXMvMjAwNy8wNi9tdWx0aS1mYWN0b3IiLCJhbXIiOlsibWZhIl19.gZnVMIBABNU_lYeKwEG6eGK51N21LOa6r3yyNmCp27jvMds3O9nDb1A3rvtW0LgeCb5k68xi94Lvi_Ui2wmXqyv2_-QixluK8QWWv1l-xAd5bYwRQbQV1bAIZZOxceS2e2Q10gIdPKQTLHkEGhkh7NYyzbSvnSwyTUTXhBn6-r-Wdx6fqZBbXKVo4a5SJTQnu9O_FQ7Wjy4naO2xHPi1L4xWFNwPQhv2p1nlUdpYusg4sy_w3j9V9mhw5qHo_q1GQ-hVoPpgJZ6kXYOCIVrqJ8yxM30PduN2tTOK9VD64P6UiAYlqBA5GLIdtD-7kS92mgiIuBRFIxp-3pwL7REMLA", "expires_in": 86400, "token_type": "Bearer" } Thanks On Mon, Jan 7, 2019 at 3:16 PM Naduni Pamudika <[email protected]> wrote: > Hi Nirubikaa, > > On Mon, Jan 7, 2019 at 1:23 PM Nirubikaa Ravikumar <[email protected]> > wrote: > >> Hi all, >> I am planing to work on "Auth0 OpenID Connector ". Please find the flow >> diagram below: >> >> In the flow of OpenID Connect, >> >> User sends a request to service provider, then the request is redirected >> to the WSO2 IS .Then the WSO2 IS requests to get authorization code with >> client credentials, and Openid scope. Then the Auth0 redirects to the >> request with Authorization code. >> >> For the Authorization code request, as I read we need to send only the > client Id (not both the client id and the secret). > > Could you please provide sample requests and responses for the flow you > explained here? It would help others understand OIDC using Auth0 easily. > > Thanks, > Naduni > >> Then WSO2 IS requests Access token, to that Auth0 responses with the >> Access token, An ID token is issued from the token endpoint in addition to >> an Access token. >> >> WSO2 IS requests to get user info, And Auth0 can retrieve user >> information from the ID token or Access token. >> >> Thanks. >> -- >> R.Nirubikaa >> Intern | WSO2 >> M: O779108852 >> >> >> > > > -- > *Naduni Pamudika* > Software Engineer | WSO2 > > Mobile: +94 719 143658 <+94%2071%20914%203658> > LinkedIn: https://lk.linkedin.com/in/naduni-pamudika > Blog: https://medium.com/@naduni_pamudika > [image: http://wso2.com/signature] <http://wso2.com/signature> > -- R.Nirubikaa Intern | WSO2 M: O779108852
_______________________________________________ Architecture mailing list [email protected] https://mail.wso2.org/cgi-bin/mailman/listinfo/architecture
