That is correct. But I made some changes to it which I think were relevant. For example, I added the consent step, which is optional, and the script will detect automatically if that is the case
I also removed some fields from the get authorize, that were not needed, and in fact should never be there, and when invoking them in real environment should NOT be used at all.
And also other improvements besides adding more scripts that were not there.
------------------------------
Joao Goncalves
Pyxis, Lda.
Sintra
+351 91 721 4994
------------------------------
Original Message:
Sent: Tue November 17, 2020 11:14 AM
From: Jon Harry
Subject: Improved Scripts for testing OpenID
Hi Joao,
Thanks for sharing these. This kind of collaboration and sharing is exactly what this community is all about.
I've passed these on to the support folks in case they want to add to the support GitHub (which, if I remember, is where the original OAuth scripts came from).
Jon.
------------------------------
Jon Harry
Consulting IT Security Specialist
IBM
Original Message:
Sent: Tue November 17, 2020 10:42 AM
From: Joao Goncalves
Subject: Improved Scripts for testing OpenID
I've been improving these scripts
There are 2 new scripts: to logout, to refresh the token
The scripts accept an optional parameter "Scope", that can be used to test claims based on scopes. You can use any number of scopes (0, ...)
These are shell scripts.
They generate intermediate files, so you can check all steps.
The files are attached in this post.
------------------------------
Joao Goncalves
Pyxis, Lda.
Sintra
+351 91 721 4994
------------------------------