PHPackages debolk/oauth2-provider - PHPackages - PHPackages [Skip to content](#main-content)[PHPackages](/)[Directory](/)[Categories](/categories)[Trending](/trending)[Leaderboard](/leaderboard)[Changelog](/changelog)[Analyze](/analyze)[Collections](/collections)[Log in](/login)[Sign up](/register) 1. [Directory](/) 2. / 3. [Authentication & Authorization](/categories/authentication) 4. / 5. debolk/oauth2-provider ActiveLibrary[Authentication & Authorization](/categories/authentication) debolk/oauth2-provider ====================== OAuth 2 provider for implementing communication with De Bolk OAuth2 authorisation server, using league/oauth2-client 01PHP Since Sep 26Pushed 10y ago2 watchersCompare [ Source](https://github.com/debolk/oauth2-provider)[ Packagist](https://packagist.org/packages/debolk/oauth2-provider)[ RSS](/packages/debolk-oauth2-provider/feed)WikiDiscussions master Synced 1mo ago READMEChangelogDependenciesVersions (1)Used By (0) DeBolk Provider for OAuth 2.0 Client ==================================== [](#debolk-provider-for-oauth-20-client) This package provides De Bolk OAuth 2.0 support for the PHP League's [OAuth 2.0 Client](https://github.com/thephpleague/oauth2-client). Installation ------------ [](#installation) To install, use composer: ``` composer require debolk/oauth2-provider ``` Usage ----- [](#usage) Usage is the same as The League's OAuth client, using `\DeBolk\OAuth2\Client\Provider\DeBolk` as the provider. ### Authorization Code Flow [](#authorization-code-flow) ``` $provider = new DeBolk\OAuth2\Client\Provider\DeBolk([ 'clientId' => '{client-id}', 'clientSecret' => '{client-secret}', 'redirectUri' => 'https://example.com/callback-url', ]); if (!isset($_GET['code'])) { // If we don't have an authorization code then get one $authUrl = $provider->getAuthorizationUrl(); $_SESSION['oauth2state'] = $provider->getState(); header('Location: '.$authUrl); exit; // Check given state against previously stored one to mitigate CSRF attack } elseif (empty($_GET['state']) || ($_GET['state'] !== $_SESSION['oauth2state'])) { unset($_SESSION['oauth2state']); exit('Invalid state'); } else { // Try to get an access token (using the authorization code grant) $token = $provider->getAccessToken('authorization_code', [ 'code' => $_GET['code'] ]); // Optional: Now you have a token you can look up a users profile data try { // We got an access token, let's now get the user's details $user = $provider->getResourceOwner($token); // Use these details to create a new profile printf('Hello %s!', $user->getNickname()); } catch (Exception $e) { // Failed to get user details exit('Oh dear...'); } // Use this to interact with an API on the users behalf echo $token->getToken(); } ``` ### Managing Scopes [](#managing-scopes) When creating your authorization URL, you can specify the state and scopes your application may authorize. ``` $options = [ 'state' => 'OPTIONAL_CUSTOM_CONFIGURED_STATE', 'scope' => ['user','user:email','repo'] // array or string ]; $authorizationUrl = $provider->getAuthorizationUrl($options); ``` If neither are defined, the provider will utilize internal defaults as documented on . Credits ------- [](#credits) - [Jakob Buis](http://www.jakobbuis.nl) License ------- [](#license) Copyright 2015 Jakob Buis. This version of the provider is available under the MIT license. Please see the `LICENSE` file for the complete text of the license. ### Health Score 19 — LowBetter than 10% of packages Maintenance20 Infrequent updates — may be unmaintained Popularity1 Limited adoption so far Community8 Small or concentrated contributor base Maturity41 Maturing project, gaining track record Bus Factor1 Top contributor holds 100% of commits — single point of failure How is this calculated?**Maintenance (25%)** — Last commit recency, latest release date, and issue-to-star ratio. Uses a 2-year decay window. **Popularity (30%)** — Total and monthly downloads, GitHub stars, and forks. Logarithmic scaling prevents top-heavy scores. **Community (15%)** — Contributors, dependents, forks, watchers, and maintainers. Measures real ecosystem engagement. **Maturity (30%)** — Project age, version count, PHP version support, and release stability. ### Community Maintainers ![](https://www.gravatar.com/avatar/a1ec7db3dcb1357bf67cfb39c84ddd9929d74e11187a0801d0f57cc29f723c7d?d=identicon)[jakobbuis](/maintainers/jakobbuis) --- Top Contributors [![jakobbuis](https://avatars.githubusercontent.com/u/949674?v=4)](https://github.com/jakobbuis "jakobbuis (9 commits)") ### Embed Badge ![Health badge](/badges/debolk-oauth2-provider/health.svg) ``` [![Health](https://phpackages.com/badges/debolk-oauth2-provider/health.svg)](https://phpackages.com/packages/debolk-oauth2-provider) ``` ### Alternatives [namshi/jose JSON Object Signing and Encryption library for PHP. 1.8k99.6M100](/packages/namshi-jose)[league/oauth1-client OAuth 1.0 Client Library 99698.8M106](/packages/league-oauth1-client)[bezhansalleh/filament-shield Filament support for `spatie/laravel-permission`. 2.8k2.9M88](/packages/bezhansalleh-filament-shield)[gesdinet/jwt-refresh-token-bundle Implements a refresh token system over Json Web Tokens in Symfony 70516.4M35](/packages/gesdinet-jwt-refresh-token-bundle)[league/oauth2-google Google OAuth 2.0 Client Provider for The PHP League OAuth2-Client 41721.2M117](/packages/league-oauth2-google)[illuminate/auth The Illuminate Auth package. 9327.3M1.0k](/packages/illuminate-auth) PHPackages © 2026 [Directory](/)[Categories](/categories)[Trending](/trending)[Changelog](/changelog)[Analyze](/analyze)