This package is abandoned and no longer maintained. The author suggests using the spomky-labs/oauth2-server-bundle package instead.

Symfony2 Authorization Endpoint for OAuth2 Server Bundle


Scrutinizer Code Quality Build Status HHVM Status PHP 7 ready


Latest Stable Version Total Downloads Latest Unstable Version License

This bundle provides the authorization endpoint for your OAuth2 Server.

It relies on the OAuth2 Interfaces Project.

The Release Process

The release process is described here.


This bundle needs at least PHP 5.4 and Symfony v2.3.

It has been successfully tested using:

  • PHP: PHP 5.4 to PHP 5.6, PHP 7 and HHVM.
  • Symfony: v2.3.x to v2.7.x.


The preferred way to install this library is to rely on Composer:

composer require "spomky-labs/oauth2-server-authorization-endpoint-bundle" "~5.0.0"

Enable the bundle

Enable the bundle in the kernel:

// app/AppKernel.php

public function registerBundles()
    $bundles = array(
        new SpomkyLabs\OAuth2ServerAuthorizationEndpointBundle\SpomkyLabsOAuth2ServerAuthorizationEndpointBundle(),


    scope_manager: my_scope_manager # The scope manager
        x_frame_options: deny # Allowed values are 'deny', 'same-origin', an URI or 'null' (header "X-Frame-Options" not added to the responses)
        enforce_redirect_uri: false # If enabled, all authorization request must have a redirect_uri parameter
        enforce_secured_redirect_uri: false # if enabled, redirect uri scheme must be HTTPS
        enforce_registered_client_redirect_uris: false # if enabled, registered clients must have at least one redirect uri stored
        enforce_state: false # if enabled, the state parameter is mandatory

How to use

See this page for more information.


Requests for new features, bug fixed and all other ideas to make this bundle useful are welcome. Please follow these best practices.


This bundle is release under MIT licence.