Expand description
OAuth 2.1 Authorization Code + PKCE support.
Forge acts as an OAuth 2.1 Authorization Server for its MCP endpoint.
Enable with mcp.oauth = true in forge.toml.
Modules§
- pkce
- PKCE (Proof Key for Code Exchange) verification.
Structs§
- Authorization
Code - A pending authorization code with PKCE challenge.
- OAuth
Client - An OAuth 2.1 client registration.
Functions§
- generate_
random_ token - 256 bits of CSPRNG entropy (two UUIDv4s), base64url-encoded.
- validate_
redirect_ uri - Validate a redirect URI against a client’s registered URIs.