[mitreid-connect] Regd OpenIdConnect Protected Resource

Ananth Ramchandran ramchandran.ananth at gmail.com
Wed Jul 15 14:13:08 EDT 2015 

Hello Justin,

                     First of all Thank you for implementing an easy to
understand application of the Open Id Connect protocol. I have implemented
the Open Id Connect Server using the maven overlay method and have
configured an angularjs client app to generate access tokens. I have
configured the angularjs app with spring so as to support the authorization
code grant type. (I was not able to figure out how to consume the MitreId
openIdConnect) for implicit flow for a purely angularjs app).

 Currently I have three applications,Auth application ( Maven overlay of
MitreId Connect), Spring backed Angularjs application, Resource
application(Rest based application).

1) My scenario is to set just open id scope to the angularjs app and
generate the token.Pass to the Resource application which has all the
scopes to retrieve user information. Forgive me if I completely
misunderstood the Oauth2 protocol but my understanding was since the
Resource has all scopes, when the introspection occurs it would recover all
user related information. Is this the wrong thought process  and if so do I
have to have the spring backed angularjs app have all the scopes.

2) Question 1 led me to this question. Having a spring backed angularjs app
requires me to manage 3 wars which I want to eliminate.  The issue is the
configuration required to register the client application as a client(
static client,dynamic and hybrid) , server configurations ,  keystores for
encryption. I could do this with Java class but I am completely lost as to
how to achieve this in angularjs. Any advice as to how to go about doing
this would be greatly appreciated.I found this handy directive (
http://andreareginato.github.io/oauth-ng/#introduction) which can be used
but I couldn't figure out how to incorporate it the heavy configuration
needed for the client.


Thanks and Regards,
Ananth Ramchandran
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://mailman.mit.edu/pipermail/mitreid-connect/attachments/20150715/428d1485/attachment.htm

More information about the mitreid-connect mailing list