Expand description
Oauth2 RFC protocol definitions.
Structs§
- Access
Token Introspect Request - Request to introspect the identity of the account associated to a token.
- Access
Token Introspect Response - Response to an introspection request. If the token is inactive or revoked, only
activewill be set to the value offalse. - Access
Token Request - An Access Token request. This requires a set of grant-type parameters to satisfy the request.
- Access
Token Response - The response for an access token
- Authorisation
Request - An OAuth2 client redirects to the authorisation server with Authorisation Request parameters.
- Authorisation
Request Oidc - An OIDC client redirects to the authorisation server with Authorisation Request parameters.
- Device
Authorization Response - Ref https://www.rfc-editor.org/rfc/rfc8628#section-3.2
- Error
Response - OAuth2RF
C9068 Token - OAuth2RF
C9068 Token Extensions - Extensions for RFC 9068 Access Token
- Oauth2
Rfc8414 Metadata Response - The response to an OAuth2 rfc8414 metadata request
- Oidc
Discovery Response - The response to an OpenID connect discovery request https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderMetadata
- Oidc
Webfinger Rel - Oidc
Webfinger Response - The response to an Webfinger request. Only a subset of the body is defined here. https://datatracker.ietf.org/doc/html/rfc7033#section-4.4
- Pkce
Request - Token
Revoke Request - Request revocation of an Access or Refresh token. On success the response is OK 200 with no body.
Enums§
- Access
Token Type - Access token types, per IANA Registry - OAuth Access Token Types
- Authorisation
Response - In response to an Authorisation request, the user may be prompted to consent to the scopes requested by the OAuth2 client. If they have previously consented, they will immediately proceed.
- Claim
Type - Code
Challenge Method - Display
Value - Grant
Type - Grant
Type Req - IdToken
Sign Alg - Algorithms supported for token signatures. Prefers
ES256 - PkceAlg
- Response
Mode - Response
Type - Subject
Type - Token
Endpoint Auth Method
Constants§
- OAUT
H2_ DEVICE_ CODE_ EXPIRY_ SECONDS - How many seconds a device code is valid for.
- OAUT
H2_ DEVICE_ CODE_ INTERVAL_ SECONDS - How often a client device can query the status of the token