OAuth2 Login - VulApp

Authorization Code Flow

1 Client redirects user to /web/oauth2/authorize

2 User authenticates and grants consent

3 Server redirects to redirect_uri with auth code

4 Client exchanges code for token via POST /api/v1/oauth2/token

5 Client accesses /api/v1/oauth2/userinfo with Bearer token

Start OAuth2 Flow

Client Credentials

client_id: vulapp-client-001 client_secret: super-secret-client-secret

Vulnerabilities to Test

1. Open redirect: change redirect_uri to any URL 2. CSRF: state parameter is never validated 3. Auth codes are not invalidated after use 4. client_secret is not validated on token exchange 5. Token accepted via query string (?token=...)

← Back to Home