This project is a Python implementation of an OIDC Provider on top of jwtconnect.io that shows to you how to 'build' an OP using the classes and functions provided by oidc-op.
If you want to add or replace functionality the official documentation should be able to tell you how.
If you are just going to build a standard OP you only have to understand how to write your configuration file.
In example/ folder you'll find some complete examples based on flask and django.
Idpy OIDC-op implements the following standards:
- OpenID Connect Core 1.0 incorporating errata set 1
- Web Finger
- OpenID Connect Discovery 1.0 incorporating errata set 1
- OpenID Connect Dynamic Client Registration 1.0 incorporating errata set 1
- OpenID Connect Session Management 1.0
- OpenID Connect Back-Channel Logout 1.0
- OpenID Connect Front-Channel Logout 1.0
- OAuth2 Token introspection
It also comes with the following add_on modules.
- Custom scopes, that extends OIDC standard ScopeClaims
- Proof Key for Code Exchange by OAuth Public Clients (PKCE)
- OAuth2 PAR
- OAuth2 RAR
- OAuth2 DPoP
- OAuth 2.0 Authorization Server Issuer Identification
The entire project code is open sourced and therefore licensed under the Apache 2.0
For any futher information please read the Official Documentation.
- Roland Hedberg