Created
July 7, 2019 08:46
-
-
Save SimonShapiro/e8911023e8dfc7e0d0993e3e5f8f4028 to your computer and use it in GitHub Desktop.
Solid application authentication
mentioned in gitter: your JWT needs to use "alg":"none" instead of "alg":"RS256" (that'll fix the 500), and your redirect_uri in the request doesn't match the one you registered (registered "http://localhost:8888/tree/", using "http://localhost:8888/tree"). try
curl -v 'https://inrupt.net/authorize?scope=openid%20profile&client_id=63eeefcd2b98fee23ffbd2461128a17d&response_type=id_token%20token&request=eyJhbGciOiJub25lIn0.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.'
next step, which will be hard without a browser, is logging in in the UI and getting a cookie.
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In this notebook I have recorded all the steps up to the failing step 12 from (the Solid application authentication spec)[https://github.com/solid/webid-oidc-spec/pull/27/files].
Steps 2b simply shows that the NSS does not send the issuer as part of the content, using the
Linkinstead.Also, Step 5 Old get a private key in
PEMformat, but doesn't use it: rather step 5 below that is used.