Tags: oauth jwt 

Rating: 5.0

# Full WriteUp

Full Writeup on our website: [https://www.aperikube.fr/docs/csawquals_2018/sso](https://www.aperikube.fr/docs/csawquals_2018/sso)

-------------
# TL;DR

This challenge consists in the analysis of an authentication flow based on the OAuth2.0 protocol (see *[RFC-6749](https://tools.ietf.org/html/rfc6749)* and *[RFC-6750](https://tools.ietf.org/html/rfc6750)*).

The task was not that complex, it was only a matter of careful analysis of RFCs in order to solve the challenge

Original writeup (https://www.aperikube.fr/docs/csawquals_2018/sso/).