This is an implementation of an OAuth 2.0 (draft 13) authorisation server, resource server and client.
- Web server flow
- Auto approved applications
- JavaScript user-agent flow
- Client (user-agent)
- Refresh tokens
It is highly recommended that you use the latest version of CodeIgniter Reactor.
You should have CSRF protection and XSS filtering enabled for added security.
You should save sessions to the database and encrypt them too.