Authorization Server

Authorization server supporting OAuth 2.0 & OpenID Connect, powered by Authlete.

Endpoint Path
Authorization Endpoint /api/authorization
Token Endpoint /api/token
JWK Set Endpoint /api/jwks
Discovery Endpoint /.well-known/openid-configuration
Revocation Endpoint /api/revocation
Introspection Endpoint /api/introspection
Registration Endpoint /api/register
Pushed Authorization Request Endpoint /api/par
Grant Management Endpoint /api/gm/{grantId}
Federation Configuration Endpoint /.well-known/openid-federation
Federation Registration Endpoint /api/federation/register
Credential Issuer Metadata Endpoint /.well-known/openid-credential-issuer
JWT Issuer Metadata Endpoint /.well-known/jwt-issuer
JWT VC Issuer Metadata Endpoint /.well-known/jwt-vc-issuer
Management Console https://so.authlete.com
Source Code https://github.com/authlete/java-oauth-server
Libraries https://github.com/authlete/authlete-java-common
https://github.com/authlete/authlete-java-jaxrs
  1. Authlete is an OAuth 2.0 & OpenID Connect implementation on cloud (overview).
  2. This authorization server is written using Authlete's open source libraries.
  3. This authorization server is DB-less because authorization data are stored on cloud.
  4. You can manage settings of authorization servers by Service Owner Console (document).
  5. You can manage settings of client applications by Developer Console (document).