This project is a Python implementation of an OIDC Provider on top of jwtconnect.io that shows you how to 'build' an OP using the classes and functions provided by oidc-op.
If you are just going to build a standard OP you only have to write the configuration file. If you want to add or replace functionality this documentation should be able to tell you how.
Idpy OIDC-op implements the following standards:
- OpenID Connect Core 1.0 incorporating errata set 1
- Web Finger
- OpenID Connect Discovery 1.0 incorporating errata set 1
- OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1
- OpenID Connect Session Management 1.0
- OpenID Connect Back-Channel Logout 1.0
- OpenID Connect Front-Channel Logout 1.0
- OAuth2 Token introspection
- OAuth2 Token exchange
It also comes with the following add_on modules.
- Custom scopes, that extends [OIDC standard ScopeClaims]
- Proof Key for Code Exchange by OAuth Public Clients (PKCE)
- OAuth2 RAR
- OAuth2 DPoP
The entire project code is open sourced and therefore licensed under the Apache 2.0.
.. toctree:: :maxdepth: 2 :caption: Introduction contents/intro.rst
.. toctree:: :maxdepth: 2 :caption: Setup contents/setup.rst
.. toctree:: :maxdepth: 2 :caption: Configuration contents/conf.rst
.. toctree:: :maxdepth: 2 :caption: Usage contents/usage.md
.. toctree:: :maxdepth: 2 :caption: Session management contents/session_management.rst
.. toctree:: :maxdepth: 2 :caption: Developer's contents/developers.md
.. toctree:: :maxdepth: 2 :caption: Client database contents/clients.rst
.. toctree:: :maxdepth: 2 :caption: FAQ contents/faq.md