whs-authz-authn/oauth-backend
1
0
Fork 0
mirror of https://github.com/j93es/oauth-backend.git synced 2026-06-04 07:51:51 +09:00
Code Issues Projects Releases Packages Wiki Activity

[FEAT] : AccessToken 탐지 기능 이식 및 탐지 범위 확장(탐지 기준 완화 및 기준별 status차등 부여)

Browse source
This commit is contained in:
KMINGON 2025-06-09 20:00:58 +09:00
commit 34c547c1b1
2 changed files with 170 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

16
addon/init.py
View file

@ -4,6 +4,7 @@ from pkce_check import PKCEDowngradeChecker
from ScopeDetection import ScopeDetection
from csrf_check import CsrfChecker
from nonce_check import NonceChecker
from access_token import AccessTokenScanner
class PKCEAddon:
def __init__(self):
@ -61,4 +62,17 @@ class NonceAddon:
print(f"[ERROR] NonceAddon failed: {e}")
pass
addons = [PKCEAddon(), ScopeAddon(), CsrfAddon(), NonceAddon()]
class AccessTokenAddon:
def __init__(self):
self.checker = AccessTokenScanner()
async def response(self, flow: http.HTTPFlow):
try:
await self.checker.scan(flow)
except Exception as e:
print(f"[ERROR] AccessToken Addon failed: {e}")
pass
addons = [PKCEAddon(), ScopeAddon(), CsrfAddon(), NonceAddon(), AccessTokenAddon()]