feat(api): postman collection for jwt tokens

c2f175f6 · dylan.peiry · 7c6b0797 · c2f175f6 · c2f175f6 · c2f175f6
Commit c2f175f6 authored Nov 27, 2021 by dylan.peiry
--- a/.gitignore
+++ b/.gitignore
--- a/Dockerfile
+++ b/Dockerfile
--- a/README.md
+++ b/README.md
--- a/certs/cert.pem
+++ b/certs/cert.pem
--- a/certs/key.pem
+++ b/certs/key.pem
--- a/docs/analyse.txt
+++ b/docs/analyse.txt
--- a/docs/rapport.md
+++ b/docs/rapport.md
@@ -34,4 +34,8 @@ Off by default, not secure.



-# 
+# Authentication & Authorization
+
+For the /teachers endpoints, implement authentication and authorization using Okta as IdP with access_tokens
+First require code to : https://dev-80790093.okta.com/oauth2/default/v1/authorize
+Then trade code for an access token that will give access to the API https://dev-80790093.okta.com/oauth2/default/v1/token
--- a/nginx.conf
+++ b/nginx.conf
--- a/postman_collection.json
+++ b/postman_collection.json
+{
+	"info": {
+		"_postman_id": "e88d6235-0e63-4028-9949-c7257bc76c29",
+		"name": "AppSec API",
+		"schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json"
+	},
+	"item": [
+		{
+			"name": "GET Authorize (code)",
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "GET",
+				"header": [
+					{
+						"key": "Authorization",
+						"value": "Basic foo:bar",
+						"type": "text",
+						"disabled": true
+					}
+				],
+				"url": {
+					"raw": "https://dev-80790093.okta.com/oauth2/default/v1/authorize?client_id=0oa2v2ujqfpqiAuEk5d7&response_type=code&scope=openid&redirect_uri=http://localhost/authorization-code/callback&state=100",
+					"protocol": "https",
+					"host": [
+						"dev-80790093",
+						"okta",
+						"com"
+					],
+					"path": [
+						"oauth2",
+						"default",
+						"v1",
+						"authorize"
+					],
+					"query": [
+						{
+							"key": "client_id",
+							"value": "0oa2v2ujqfpqiAuEk5d7"
+						},
+						{
+							"key": "response_type",
+							"value": "code"
+						},
+						{
+							"key": "scope",
+							"value": "openid"
+						},
+						{
+							"key": "redirect_uri",
+							"value": "http://localhost/authorization-code/callback"
+						},
+						{
+							"key": "state",
+							"value": "100"
+						}
+					]
+				}
+			},
+			"response": []
+		},
+		{
+			"name": "GET Token (access token)",
+			"request": {
+				"auth": {
+					"type": "noauth"
+				},
+				"method": "POST",
+				"header": [
+					{
+						"key": "Accept",
+						"value": "application/json",
+						"type": "text"
+					},
+					{
+						"key": "Content-Type",
+						"value": "application/x-www-form-urlencoded",
+						"type": "text"
+					},
+					{
+						"key": "Authorization",
+						"value": "Basic MG9hMnYydWpxZnBxaUF1RWs1ZDc6N3pyd0pibUlUNjBkcVFBSmlxUzBwdTBWUVQ3RkFWbzRsekRxRzJIaQ==",
+						"type": "text"
+					}
+				],
+				"url": {
+					"raw": "https://dev-80790093.okta.com/oauth2/default/v1/token?grant_type=authorization_code&redirect_uri=http://localhost/authorization-code/callback&code=GCqhSYKP0M9W5qYcNL0Y2oWrqG-s8WZAToGZvy8_nwc",
+					"protocol": "https",
+					"host": [
+						"dev-80790093",
+						"okta",
+						"com"
+					],
+					"path": [
+						"oauth2",
+						"default",
+						"v1",
+						"token"
+					],
+					"query": [
+						{
+							"key": "grant_type",
+							"value": "authorization_code"
+						},
+						{
+							"key": "redirect_uri",
+							"value": "http://localhost/authorization-code/callback"
+						},
+						{
+							"key": "code",
+							"value": "GCqhSYKP0M9W5qYcNL0Y2oWrqG-s8WZAToGZvy8_nwc"
+						},
+						{
+							"key": "client_id",
+							"value": "0oa2v2ujqfpqiAuEk5d7",
+							"disabled": true
+						}
+					]
+				}
+			},
+			"response": []
+		}
+	]
+}
\ No newline at end of file