This package implements OAuth2 for TYPO3 to enable 3rd party services to authenticate users using frontend users in TYPO3.
This package can be installed via Composer:
composer require fgtclb/typo3-oauth2-server
For a fully working setup a RSA keypair needs to be generated and set in the extension configuration:
# Generate random private key
openssl genrsa -out private.key 2048
# Extract public key from private key
openssl rsa -in private.key -pubout -out public.key
This keypair must be stored safely which means outside of the TYPO3 web directory and should be readonly.
- Set the paths to your private and public key files.
- Set the page id where your login form is located. The middleware will redirect users to this page.
To register clients in the OAuth2 server you need to create OAuth2 Client records on the root page accordingly. Here you can set the identifier and secret as well as redirect URLs to be used in your client code.
After installation the following endpoints are available and should be set in the 3rd party services:
/oauth/authorize: endpoint for authorization code requests/oauth/token: endpoint for access token requests using a authorization code/oauth/identity: endpoint for retrieving a username using an access token
Currently only the authorization code grant is available.