Code Examples
Our code examples show how to secure access to your APIs, integrate OAuth flows into UIs, and extend the capabilities of the Curity Identity Server via plugins.
Azure API Management OAuth Proxy Policy
Implementing the OAuth Proxy in Azure with an API Management Policy
API Access via JWT Assertions
Designing APIs whose clients must authenticate with strong security via client assertions
AWS API Gateway OAuth Proxy Module
An implementation of the Token Handler's OAuth Proxy module for AWS API Gateway.
Token Handler Deployment Example
Details of how the code example and its token handler is deployed
Entrust Authenticator
An authenticator that allows an integration of the Curity Identity Server with the Entrust IDaaS.
Cloudflare Worker OAuth Proxy Module
An implementation of the Token Handler's OAuth Proxy module for Cloudflare Workers.
NGINX OAuth Proxy Module
An OAuth proxy module that runs in an NGINX reverse proxy, to translate secure cookies to access tokens
NGINX Lua OAuth Proxy Plugin
An OAuth proxy plugin that can run in a LUA enabled reverse proxy to translate secure cookies to access tokens
BehavioSec Authenticator
An authenticator that uses behavioral data as a second factor to authenticate users.
Standard OAuth Agent
An OAuth Agent that enables strong browser security for SPAs
Financial-Grade OAuth Agent
An OAuth Agent that enables financial-grade security for SPAs
Twilio SendGrid Emailer Plugin
Emailer plugin that uses the Twilio SendGrid Email API to send emails.
Securing a Serverless API on Vercel using JWTs
Example of a JWT protected serverless API running on Vercel
Mutual TLS Secured API
How to implement client certificate based security in a B2B API
Mobile Dynamic Client Registration
How to implement authenticated DCR in an iOS or Android app
Website with Encrypted ID Tokens
How to use encrypted ID tokens in a website
Securing a Serverless API with JWTs
An example of a Serverless API that validates JWTs on every lambda function call
Securing a Go API With JWTs
How to secure your Go API with JSON Web Tokens
SPA using the Token Handler Pattern
An example showing how to use the Token Handler Pattern in an SPA
Open Banking Brazil DCR Request Validation in Nginx
Provide an example on how to validate a DCR request in nginx to comply with the Open Banking Brazil Specification