Okta Authorization Code Flow PKCE
Okta Authorization Code Flow PKCE is a simple library to do authorization code flow with PKCE and retrieve details also from /userinfo and /introspect.
Installation
You can install this library by running the following command through Composer
composer require dragosgaftoneanu/okta-auth-code-flow-pkce
Requirements
- An Okta account, called an organization (you can sign up for a free developer organization)
- A local web server that runs PHP 7.0+
Methods available
setClientId($client_id)
This method sets the client ID used for authorization code flow with PKCE.
setRedirectUri($redirect_uri)
This method sets the redirect uri used for authorization code flow with PKCE.
setIssuer($issuer)
This method sets the issuer used for authorization code flow with PKCE.
setScopes($scopes)
This method sets the scopes used for authorization code flow with PKCE.
setState($state)
This method sets the state used for authorization code flow with PKCE.
setNonce($nonce)
This method sets the nonce used for authorization code flow with PKCE.
setCodeVerifier($code_verifier)
This method sets the code verifier used for authorization code flow with PKCE.
parseAuthCode($code, $state, $error, $full=true)
This method takes the authorization code, state, error parameters from either GET or POST in order to further process the flow.
If $full is set to true, then the result will contain also the details from /introspect and /userinfo endpoint, otherwise it will return only the JWT tokens received after exchanging the code.
Bugs?
If you find a bug or encounter an issue when using the library, please open an issue on GitHub here and it will be further investigated.
