CESNET
diff --git a/‎.gitignore‎
Lines changed: 15 additions & 0 deletions b/‎.gitignore‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎README.md‎
Lines changed: 40 additions & 0 deletions b/‎README.md‎
Lines changed: 40 additions & 0 deletions
diff --git a/‎pom.xml‎
Lines changed: 56 additions & 0 deletions b/‎pom.xml‎
Lines changed: 56 additions & 0 deletions
diff --git a/‎src/main/java/cz/metacentrum/fake_oidc/FakeOidcApplication.java‎
Lines changed: 13 additions & 0 deletions b/‎src/main/java/cz/metacentrum/fake_oidc/FakeOidcApplication.java‎
Lines changed: 13 additions & 0 deletions
diff --git a/‎src/main/java/cz/metacentrum/fake_oidc/FakeOidcProperties.java‎
Lines changed: 26 additions & 0 deletions b/‎src/main/java/cz/metacentrum/fake_oidc/FakeOidcProperties.java‎
Lines changed: 26 additions & 0 deletions
@@ -0,0 +1,15 @@
+# Ignore Java project files #
+*.class
+*.jar
+*.war
+*.ear
+
+**/target
+dependency-reduced-pom.xml
+
+# Ignore IntelliJ project files #
+
+*.iml
+*.ipr
+*.iws
+.idea/
@@ -0,0 +1,40 @@
+# Fake OpenID Connect Authorization Server
+
+(c) 2020 Martin Kuba, CESNET
+
+This application implements an OpenID Connect (OIDC) Authorization Server (AS) that
+provides just one user. Its purpose is to provide a temporary OIDC AS that can be
+used after deployment of an OIDC client and an OIDC resource server to set them up before
+a real OIDC server is deployed.
+
+This fake server has the following features:
+* it is implemented in Java as Spring Boot application
+* implements **Implicit Grant flow** (for JavaScript clients)
+* provides the following endpoints:
+  * /.well-known/openid-configuration providing metadata
+  * /jwks providing JSON Web Key Set for validating cryptographic signature of id_token
+  * /authorize which uses HTTP Basic Auth for asking for username and password
+  * /userinfo that provides data about the user
+  * /introspection that provides access token introspection
+
+Build and run it with:   
+```bash
+mvn package
+
+java -jar target/fake_oidc.jar
+```
+
+By default the application runs at TCP port 8090, uses a self-signed certificate for localhost, and the only
+user has username "perun" and password "test". This can be changed by using command line options:
+ 
+```bash
+java -jar target/fake_oidc.jar \
+           --server.port=8100 \
+           --server.ssl.key-store=mykeystore.p12 \
+           --oidc.user.logname=john \
+           --oidc.user.password=bflmpsvz \
+           [email protected] \
+           --oidc.user.name="John Doe"
+```  
+See all the available options in the file src/main/resources/application.yml
+
@@ -0,0 +1,56 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance"
+	xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 https://maven.apache.org/xsd/maven-4.0.0.xsd">
+	<modelVersion>4.0.0</modelVersion>
+	<parent>
+		<groupId>org.springframework.boot</groupId>
+		<artifactId>spring-boot-starter-parent</artifactId>
+		<version>2.3.2.RELEASE</version>
+		<relativePath/> <!-- lookup parent from repository -->
+	</parent>
+	<groupId>cz.metacentrum</groupId>
+	<artifactId>fake_oidc</artifactId>
+	<version>0.0.1-SNAPSHOT</version>
+	<name>fake_oidc</name>
+	<description>Fake OpenId Connect Authorization Server</description>
+
+	<properties>
+		<java.version>11</java.version>
+	</properties>
+
+	<dependencies>
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-web</artifactId>
+		</dependency>
+
+		<dependency>
+			<groupId>org.springframework.boot</groupId>
+			<artifactId>spring-boot-starter-test</artifactId>
+			<scope>test</scope>
+			<exclusions>
+				<exclusion>
+					<groupId>org.junit.vintage</groupId>
+					<artifactId>junit-vintage-engine</artifactId>
+				</exclusion>
+			</exclusions>
+		</dependency>
+
+		<dependency>
+			<groupId>com.nimbusds</groupId>
+			<artifactId>nimbus-jose-jwt</artifactId>
+			<version>8.19</version>
+		</dependency>
+	</dependencies>
+
+	<build>
+		<finalName>${project.name}</finalName>
+		<plugins>
+			<plugin>
+				<groupId>org.springframework.boot</groupId>
+				<artifactId>spring-boot-maven-plugin</artifactId>
+			</plugin>
+		</plugins>
+	</build>
+
+</project>
@@ -0,0 +1,13 @@
+package cz.metacentrum.fake_oidc;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class FakeOidcApplication {
+
+	public static void main(String[] args) {
+		SpringApplication.run(FakeOidcApplication.class, args);
+	}
+
+}
@@ -0,0 +1,26 @@
+package cz.metacentrum.fake_oidc;
+
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.stereotype.Component;
+
+@Component
+@ConfigurationProperties(prefix="oidc")
+public class FakeOidcProperties {
+
+    private User user;
+
+    public User getUser() {
+        return user;
+    }
+
+    public void setUser(User user) {
+        this.user = user;
+    }
+
+    @Override
+    public String toString() {
+        return "FakeOidcProperties{" +
+                "user=" + user +
+                '}';
+    }
+}