{"url":"https://graneed.hatenablog.com/entry/2018/09/17/091053","categories":["CTF"],"provider_name":"Hatena Blog","html":"<iframe src=\"https://hatenablog-parts.com/embed?url=https%3A%2F%2Fgraneed.hatenablog.com%2Fentry%2F2018%2F09%2F17%2F091053\" title=\"CSAW CTF Quals 2018 - sso - \u3053\u3093\u3068\u308d\u30fc\u308b\u3057\u30fc\u3053\u3093\u3068\u308d\u30fc\u308b\u3076\u3044\" class=\"embed-card embed-blogcard\" scrolling=\"no\" frameborder=\"0\" style=\"display: block; width: 100%; height: 190px; max-width: 500px; margin: 10px 0px;\"></iframe>","height":"190","type":"rich","width":"100%","image_url":"https://cdn-ak.f.st-hatena.com/images/fotolife/g/graneed/20180917/20180917021551.png","version":"1.0","title":"CSAW CTF Quals 2018 - sso","author_name":"graneed","description":"\u554f\u984c\u6587 Don't you love undocumented APIs http://web.chal.csaw.io:9000/ writeup HTML\u30bd\u30fc\u30b9\u3092\u78ba\u8a8d\u3059\u308b\u3002 <h1>Welcome to our SINGLE SIGN ON PAGE WITH FULL OAUTH2.0!</h1> <a href=\"/protected\">.</a> <!-- Wish we had an automatic GET route for /authorize... well they'll just have to POST from their own clients I guess \u2026","published":"2018-09-17 09:10:53","provider_url":"https://hatena.blog","blog_title":"\u3053\u3093\u3068\u308d\u30fc\u308b\u3057\u30fc\u3053\u3093\u3068\u308d\u30fc\u308b\u3076\u3044","blog_url":"https://graneed.hatenablog.com/","author_url":"https://blog.hatena.ne.jp/graneed/"}