Skip to content
/ utAPIa Public

utAPIa is a middleware that enhances APIs by enabling users to enforce privacy policies on data shared via OAuth delegations.

1 star 0 forks Branches Tags Activity
Star
Notifications You must be signed in to change notification settings

DistriNet/utAPIa

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

3 Commits
browser-extension
browser-extension
 
 
resource-server
resource-server
 
 
.gitignore
.gitignore
 
 
readme.md
readme.md
 
 

Repository files navigation

This repository cntains our proof-of-concept implementation for our paper A User-centric Approach to API Delegation: Enforcing Privacy Policies on OAuth Delegations.

  • /browser-extension: A Chrome extension browser extension that add Rich Authorization Request (RAR) parameters to the ongoing authorization reqeust to our API.
  • /resource-server: The baseline API which is protected by utAPI to enforce privacy policies on API response. For our OAuth implemetation we used Authlete and deployed java-oauth-server as our authorization server.

Citation

@inproceedings{kalantari23utapia,
    author = {Kalantari, Shirin and Philippaerts, Pieter and Dimova, Yana and Hughes, Danny and Joosen, Wouter and De Decker, Bart},
    title = {A User-centric Approach to API Delegations Enforcing Privacy Policies on OAuth Delegations},
    booktitle = {Computer Security – ESORICS 2023  28th European Symposium on Research in Computer Security,},
    year = {2023}
}

About

utAPIa is a middleware that enhances APIs by enabling users to enforce privacy policies on data shared via OAuth delegations.

Resources

Readme
Activity
Custom properties

Stars

1 star

Watchers

5 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages