OAuth2 + OIDC Debugger
Home
This is a simple Client to use with any
OAuth2
or
OpenID Connect
compliant identity provider..
Configuration Parameters
Authorization Grant:
Choose which Authorization Grant or OIDC Flow to test with.
OAuth2 Authorization Code Grant
OAuth2 Implicit Grant
OAuth2 Resource Owner Password Credential Grant
OAuth2 Client Credential
OIDC Authorization Code Flow(code)
OIDC Implicit Flow(id_token token)
OIDC Implicit Flow(id_token)
OIDC Hybrid(code id_token)
OIDC Hybrid(code token)
OIDC Hybrid(code id_token token)
Authorization Endpoint:
Enter the Authorization Endpoint used by the debugger.
Token Endpoint:
Enter the Token Endpoint used by the debugger.
Display OIDC Related Artifacts?
Some OAuth2 identity providers return OIDC-related tokens even for plain OAuth2 calls. This option will display tokens in this case.
Yes
No
SSL Certificate Validation:
Should the backend debugger component validate the Identity Provider SSL/TLS certificate?
Yes
No
Use Refresh Token:
Show Refresh Token panel?
Yes
No
Request Authorization Code
State:
Auto-generated state value.
Nonce:
Auto-generated nonce value.
Client ID:
The client identifier that belongs to the application registered with the identity provider.
Redirect URL:
The redirect URL registered with the identity provider. By default use http://localhost:3000.
Scope:
The requested scope.
Up-product:
the passed up-product parameter.
UP-custom-data:
base64 encoded custom data.
acr_values:
acr_values to be passed in the request
Add Resource field?
Some identity providers require the resource parameter..
Yes
No
Resource:
The resource parameter, together with scope, tells the Identity Provider what audience or scope is desired with the access token.
Request
This field shows the request that is made to th Authorization Endpoint.
Exchange Authorization Code for Access Token
Authorization Code:
The authorization code that should be passed to the Token Endpoint. This field is aut-populated based on the authorization endpoint response.
Client ID:
The client identifier assigned to the client being tested.
Client Secret:
The client secret assigned to the client being tested. This field is optional.
Redirect URL:
The redirect URI registered with the Identity Provider. Using the default configuration, this value should be http://localhost:3000/callback
Scope
The desired scope of the access token.
Username:
The username for the Resource Owner Password Credential Grant.
Password:
The password for the Resource Owner Password Credential Grant.
Add Resource field?
Does the identity provider require a resource parameter?
Yes
No
Resource:
Does the identity provider require a resource parameter?
Request
The requst to the Token Endpoint.
Obtain New Access Token Using Refresh Token
Refresh Token:
The refresh token received in the last step. This field is auto-populated.
Client ID:
The client identifier assigned to the client being tested.
Client Secret:
The client secret assigned to the client being tested. This field is optional.
Scope
The requested scope. Must be the same as the original scope or subset.
Request
The requst to the Token Endpoint.