league/oauth2-server is a library that makes implementing a standards compliant OAuth 2.0 server trivial. Your users can authenticate and authorize application clients, and protect your APIs.
Out of the box it supports all of the grants defined in the OAuth 2.0 Authorization Framework RFC:
- Authorization code grant
- Implicit grant
- Client credentials grant
- Resource owner password credentials grant
- Refresh grant
This library was created by Alex Bilbie. Find him on Twitter at @alexbilbie.
Please see the project’s changelog for a complete history of changes to this library.
The latest release is
Please ask questions on the Github issues page.
For commercial support and custom implementations please visit Glynde Labs.