Todennus backend

An Identity, OpenID Connect, and OAuth2 Provider.

Documentations

API Refereneces

Resources

Swagger Endpoint

Tech stack

• Architecture: Clean architecture, Domain Driven Development.
• Database: gorm, go-migrate, postgreSQL, redis.
• Mux: go-chi.
• RPC: gRPC.
• Docs: swaggo.
• Container: Docker.
• Deployment: Docker compose.

Target

Architecture

Strictly follow Clean Architecture and DDD.

Features

• OAuth2 Provider with:

  • Authorization Code Flow *completed*.
  • Authorization Code Flow With PKCE *completed*.
  • Implicit Flow.
  • Resource Owner Password Credentials Flow *completed*.
  • Client Credentials Flow.
  • Refresh Token Flow *completed*.
  • Device Flow (low priority).

• Support Open ID Connect.

• Allow integrate with external Identity/OAuth2 Provider *completed*.

User traffic

• 100M users.
• 1M new users per day.
• 10M OAuth2 requests per day.

Get started

Start swagger server

$ make start-swagger

Start System

Please refer todennus-orchestration for starting our system.

Create the first user and client

1. Create the first user. The first registered user is always admininistrator.

POST /users

{
  "username": "admin",
  "password": "P@ssw0rd"
}

2. Create the first OAuth2 Client. This API Endpoint will be blocked after the first client is created.

POST /oauth2_clients/first

{
  "name": "Admin Client",
  "is_confidential": true,
  "username": "admin",
  "password": "P@ssw0rd"
}

3. You can use the OAuth2 flow now.

POST /oauth2/token

grant_type=password&
client_id=CLIENT_ID&
client_secret=CLIENT_SECRET&
username=admin&
password=P@ssw0rd