Documentation
¶
Index ¶
- Constants
- type AccessToken
- type Address
- type ApiResponse
- type AuthorizationAction
- type AuthorizationFailAction
- type AuthorizationFailReason
- type AuthorizationFailRequest
- type AuthorizationFailResponse
- type AuthorizationIssueAction
- type AuthorizationIssueRequest
- type AuthorizationIssueResponse
- type AuthorizationRequest
- type AuthorizationResponse
- type AuthorizedClientListResponse
- type BackchannelAuthenticationAction
- type BackchannelAuthenticationCompleteAction
- type BackchannelAuthenticationCompleteRequest
- type BackchannelAuthenticationCompleteResponse
- type BackchannelAuthenticationCompleteResult
- type BackchannelAuthenticationFailAction
- type BackchannelAuthenticationFailReason
- type BackchannelAuthenticationFailRequest
- type BackchannelAuthenticationFailResponse
- type BackchannelAuthenticationIssueAction
- type BackchannelAuthenticationIssueRequest
- type BackchannelAuthenticationIssueResponse
- type BackchannelAuthenticationRequest
- type BackchannelAuthenticationResponse
- type Client
- type ClientAuthorizationDeleteRequest
- type ClientAuthorizationGetListRequest
- type ClientAuthorizationUpdateRequest
- type ClientExtension
- type ClientListResponse
- type ClientRegistrationAction
- type ClientRegistrationRequest
- type ClientRegistrationResponse
- type ClientSecretRefreshResponse
- type ClientSecretUpdateRequest
- type ClientSecretUpdateResponse
- type DeviceAuthorizationAction
- type DeviceAuthorizationRequest
- type DeviceAuthorizationResponse
- type DeviceCompleteAction
- type DeviceCompleteRequest
- type DeviceCompleteResponse
- type DeviceCompleteResult
- type DeviceVerificationAction
- type DeviceVerificationRequest
- type DeviceVerificationResponse
- type GrantedScopesGetResponse
- type IntrospectionAction
- type IntrospectionRequest
- type IntrospectionResponse
- type JoseVerifyRequest
- type JoseVerifyResponse
- type NamedUri
- type Pair
- type Property
- type RequestObjectAction
- type RequestObjectRequest
- type RequestObjectResponse
- type RevocationAction
- type RevocationRequest
- type RevocationResponse
- type Scope
- type Service
- type ServiceListResponse
- type SnsCredentials
- type StandardIntrospectionAction
- type StandardIntrospectionRequest
- type StandardIntrospectionResponse
- type TaggedValue
- type TokenAction
- type TokenCreateAction
- type TokenCreateRequest
- type TokenCreateResponse
- type TokenFailAction
- type TokenFailReason
- type TokenFailRequest
- type TokenFailResponse
- type TokenIssueAction
- type TokenIssueRequest
- type TokenIssueResponse
- type TokenListResponse
- type TokenRequest
- type TokenResponse
- type TokenUpdateAction
- type TokenUpdateRequest
- type TokenUpdateResponse
- type UserInfoAction
- type UserInfoIssueAction
- type UserInfoIssueRequest
- type UserInfoIssueResponse
- type UserInfoRequest
- type UserInfoResponse
Constants ¶
View Source
const ( AuthorizationAction_INTERNAL_SERVER_ERROR = AuthorizationAction(`INTERNAL_SERVER_ERROR`) AuthorizationAction_BAD_REQUEST = AuthorizationAction(`BAD_REQUEST`) AuthorizationAction_LOCATION = AuthorizationAction(`LOCATION`) AuthorizationAction_FORM = AuthorizationAction(`FORM`) AuthorizationAction_NO_INTERACTION = AuthorizationAction(`NO_INTERACTION`) AuthorizationAction_INTERACTION = AuthorizationAction(`INTERACTION`) )
View Source
const ( AuthorizationFailAction_INTERNAL_SERVER_ERROR = AuthorizationFailAction(`INTERNAL_SERVER_ERROR`) AuthorizationFailAction_BAD_REQUEST = AuthorizationFailAction(`BAD_REQUEST`) AuthorizationFailAction_LOCATION = AuthorizationFailAction(`LOCATION`) AuthorizationFailAction_FORM = AuthorizationFailAction(`FORM`) )
View Source
const ( // UNKNOWN // // Unknown reason. AuthorizationFailReason_UNKNOWN = AuthorizationFailReason(`UNKNOWN`) // NOT_LOGGED_IN // // The authorization request from the client application contained // `prompt=none`, but any end-user has not logged in. // // Using this reason will result in `error=login_required`. AuthorizationFailReason_NOT_LOGGED_IN = AuthorizationFailReason(`NOT_LOGGED_IN`) // MAX_AGE_NOT_SUPPORTED // // The authorization request from the client application contained // `max_age` parameter with a non-zero value or the client's // configuration has a non-zero value for `default_max_age` // configuration parameter, but the authorization server cannot // behave properly based on the max age value mainly because the // server does not manage authentication time of end-users. // // Using this reason will result in `error=login_required`. AuthorizationFailReason_MAX_AGE_NOT_SUPPORTED = AuthorizationFailReason(`MAX_AGE_NOT_SUPPORTED`) // EXCEEDS_MAX_AGE // // The authorization request from the client application contained // `prompt=none`, but the time specified by `max_age` request parameter // or by `default_max_age` configuration parameter has passed since the // time at which the end-user logged in. // // Using this reason will result in `error=login_required`. AuthorizationFailReason_EXCEEDS_MAX_AGE = AuthorizationFailReason(`EXCEEDS_MAX_AGE`) // DIFFERENT_SUBJECT // // The authorization request from the client application requested a // specific value for the `sub` claim, but the current end-user (in // the case of `prompt=none`) or the end-user after the authentication // is different from the specified value. // // Using this reason will result in `error=login_required`. AuthorizationFailReason_DIFFERENT_SUBJECT = AuthorizationFailReason(`DIFFERENT_SUBJECT`) // ACR_NOT_SATISFIED // // The authorization request from the client application contained the // `acr` claim in the `claims` request parameter and the claim was marked // as essential, but the ACR performed for the end-user does not match // any one of the requested ACRs. // // Using this reason will result in `error=login_required`. AuthorizationFailReason_ACR_NOT_SATISFIED = AuthorizationFailReason(`ACR_NOT_SATISFIED`) // DENINED // // The end-user denied the authorization request from the client application. // // Using this reason will result in `error=access_denied`. AuthorizationFailReason_DENIED = AuthorizationFailReason(`DENIED`) // SERVER_ERROR // // Server error. // // Using this reason will result in `error=server_error`. AuthorizationFailReason_SERVER_ERROR = AuthorizationFailReason(`SERVER_ERROR`) // NOT_AUTHENTICATED // // The end-user was not authenticated. // // Using this reason will result in `error=login_required`. AuthorizationFailReason_NOT_AUTHENTICATED = AuthorizationFailReason(`NOT_AUTHENTICATED`) // ACCOUNT_SELECTION_REQUIRED // // The authorization server cannot obtain an account selection choice // made by the end-user. // // Using this reason will result in `error=account_selection_required`. AuthorizationFailReason_ACCOUNT_SELECTION_REQUIRED = AuthorizationFailReason(`ACCOUNT_SELECTION_REQUIRED`) // CONSENT_REQUIRED // // The authorization server cannot obtain consent from the end-user. // // Using this reason will result in `error=consent_required`. AuthorizationFailReason_CONSENT_REQUIRED = AuthorizationFailReason(`CONSENT_REQUIRED`) // INTERACTION_REQUIRED // // The authorization server needs interaction with the end-user. // // Using this reason will result in `error=interaction_required`. AuthorizationFailReason_INTERACTION_REQUIRED = AuthorizationFailReason(`INTERACTION_REQUIRED`) )
View Source
const ( AuthorizationIssueAction_INTERNAL_SERVER_ERROR = AuthorizationIssueAction(`INTERNAL_SERVER_ERROR`) AuthorizationIssueAction_BAD_REQUEST = AuthorizationIssueAction(`BAD_REQUEST`) AuthorizationIssueAction_LOCATION = AuthorizationIssueAction(`LOCATION`) AuthorizationIssueAction_FORM = AuthorizationIssueAction(`FORM`) )
View Source
const ( BackchannelAuthenticationAction_BAD_REQUEST = BackchannelAuthenticationAction(`BAD_REQUEST`) BackchannelAuthenticationAction_UNAUTHORIZED = BackchannelAuthenticationAction(`UNAUTHORIZED`) BackchannelAuthenticationAction_INTERNAL_SERVER_ERROR = BackchannelAuthenticationAction(`INTERNAL_SERVER_ERROR`) BackchannelAuthenticationAction_USER_IDENTIFICATION = BackchannelAuthenticationAction(`USER_IDENTIFICATION`) )
View Source
const ( BackchannelAuthenticationCompleteAction_NOTIFICATION = BackchannelAuthenticationCompleteAction(`NOTIFICATION`) BackchannelAuthenticationCompleteAction_NO_ACTION = BackchannelAuthenticationCompleteAction(`NO_ACTION`) BackchannelAuthenticationCompleteAction_SERVER_ERROR = BackchannelAuthenticationCompleteAction(`SERVER_ERROR`) )
View Source
const ( BackchannelAuthenticationCompleteResult_AUTHORIZED = BackchannelAuthenticationCompleteResult(`AUTHORIZED`) BackchannelAuthenticationCompleteResult_ACCESS_DENIED = BackchannelAuthenticationCompleteResult(`DENIED`) BackchannelAuthenticationCompleteResult_TRANSACTION_FAILED = BackchannelAuthenticationCompleteResult(`TRANSACTION_FAILED`) )
View Source
const ( BackchannelAuthenticationFailAction_BAD_REQUEST = BackchannelAuthenticationFailAction(`BAD_REQUEST`) BackchannelAuthenticationFailAction_FORBIDDEN = BackchannelAuthenticationFailAction(`FORBIDDEN`) BackchannelAuthenticationFailAction_INTERNAL_SERVER_ERROR = BackchannelAuthenticationFailAction(`INTERNAL_SERVER_ERROR`) )
View Source
const ( BackchannelAuthenticationFailReason_EXPIRED_LOGIN_HINT_TOKEN = BackchannelAuthenticationFailReason(`EXPIRED_LOGIN_HINT_TOKEN`) BackchannelAuthenticationFailReason_UNKNOWN_USER_ID = BackchannelAuthenticationFailReason(`UNKNOWN_USER_ID`) BackchannelAuthenticationFailReason_UNAUTHORIZED_CLIENT = BackchannelAuthenticationFailReason(`UNAUTHORIZED_CLIENT`) BackchannelAuthenticationFailReason_MISSING_USER_CODE = BackchannelAuthenticationFailReason(`MISSING_USER_CODE`) BackchannelAuthenticationFailReason_INVALID_USER_CODE = BackchannelAuthenticationFailReason(`INVALID_USER_CODE`) BackchannelAuthenticationFailReason_INVALID_BINDING_MESSAGE = BackchannelAuthenticationFailReason(`INVALID_BINDING_MESSAGE`) BackchannelAuthenticationFailReason_ACCESS_DENIED = BackchannelAuthenticationFailReason(`ACCESS_DENIED`) BackchannelAuthenticationFailReason_SERVER_ERROR = BackchannelAuthenticationFailReason(`SERVER_ERROR`) )
View Source
const ( BackchannelAuthenticationIssueAction_OK = BackchannelAuthenticationIssueAction(`OK`) BackchannelAuthenticationIssueAction_INTERNAL_SERVER_ERROR = BackchannelAuthenticationIssueAction(`INTERNAL_SERVER_ERROR`) BackchannelAuthenticationIssueAction_INVALID_TICKET = BackchannelAuthenticationIssueAction(`INVALID_TICKET`) )
View Source
const ( ClientRegistrationAction_INTERNAL_SERVER_ERROR = ClientRegistrationAction(`INTERNAL_SERVER_ERROR`) ClientRegistrationAction_BAD_REQUEST = ClientRegistrationAction(`BAD_REQUEST`) ClientRegistrationAction_CREATED = ClientRegistrationAction(`CREATED`) ClientRegistrationAction_UPDATED = ClientRegistrationAction(`UPDATED`) ClientRegistrationAction_DELETED = ClientRegistrationAction(`DELETED`) ClientRegistrationAction_OK = ClientRegistrationAction(`OK`) )
View Source
const ( DeviceAuthorizationAction_OK = DeviceAuthorizationAction(`OK`) DeviceAuthorizationAction_BAD_REQUEST = DeviceAuthorizationAction(`BAD_REQUEST`) DeviceAuthorizationAction_UNAUTHORIZED = DeviceAuthorizationAction(`UNAUTHORIZED`) DeviceAuthorizationAction_INTERNAL_SERVER_ERROR = DeviceAuthorizationAction(`INTERNAL_SERVER_ERROR`) )
View Source
const ( DeviceCompleteAction_SUCCESS = DeviceCompleteAction(`SUCCESS`) DeviceCompleteAction_INVALID_REQUEST = DeviceCompleteAction(`INVALID_REQUEST`) DeviceCompleteAction_USER_CODE_EXPIRED = DeviceCompleteAction(`USER_CODE_EXPIRED`) DeviceCompleteAction_USER_CODE_NOT_EXIST = DeviceCompleteAction(`USER_CODE_NOT_EXIST`) DeviceCompleteAction_SERVER_ERROR = DeviceCompleteAction(`SERVER_ERROR`) )
View Source
const ( DeviceCompleteResult_AUTHORIZED = DeviceCompleteResult(`AUTHORIZED`) DeviceCompleteResult_ACCESS_DENIED = DeviceCompleteResult(`ACCESS_DENIED`) DeviceCompleteResult_TRANSACTION_FAILED = DeviceCompleteResult(`TRANSACTION_FAILED`) )
View Source
const ( DeviceVerificationAction_VALID = DeviceVerificationAction(`VALID`) DeviceVerificationAction_EXPIRED = DeviceVerificationAction(`EXPIRED`) DeviceVerificationAction_NOT_EXIST = DeviceVerificationAction(`NOT_EXIST`) DeviceVerificationAction_SERVER_ERROR = DeviceVerificationAction(`SERVER_ERROR`) )
View Source
const ( IntrospectionAction_INTERNAL_SERVER_ERROR = IntrospectionAction(`INTERNAL_SERVER_ERROR`) IntrospectionAction_BAD_REQUEST = IntrospectionAction(`BAD_REQUEST`) IntrospectionAction_UNAUTHORIZED = IntrospectionAction(`UNAUTHORIZED`) IntrospectionAction_FORBIDDEN = IntrospectionAction(`FORBIDDEN`) IntrospectionAction_OK = IntrospectionAction(`OK`) )
View Source
const ( RequestObjectAction_CREATED = RequestObjectAction(`CREATED`) RequestObjectAction_BAD_REQUEST = RequestObjectAction(`BAD_REQUEST`) RequestObjectAction_UNAUTHORIZED = RequestObjectAction(`UNAUTHORIZED`) RequestObjectAction_FORBIDDEN = RequestObjectAction(`FORBIDDEN`) RequestObjectAction_PAYLOAD_TOO_LARGE = RequestObjectAction(`PAYLOAD_TOO_LARGE`) RequestObjectAction_INTERNAL_SERVER_ERROR = RequestObjectAction(`INTERNAL_SERVER_ERROR`) )
View Source
const ( RevocationAction_INVALID_CLIENT = RevocationAction(`INVALID_CLIENT`) RevocationAction_INTERNAL_SERVER_ERROR = RevocationAction(`INTERNAL_SERVER_ERROR`) RevocationAction_BAD_REQUEST = RevocationAction(`BAD_REQUEST`) RevocationAction_OK = RevocationAction(`OK`) )
View Source
const ( StandardIntrospectionAction_INTERNAL_SERVER_ERROR = StandardIntrospectionAction(`INTERNAL_SERVER_ERROR`) StandardIntrospectionAction_BAD_REQUEST = StandardIntrospectionAction(`BAD_REQUEST`) StandardIntrospectionAction_OK = StandardIntrospectionAction(`OK`) )
View Source
const ( TokenAction_INVALID_CLIENT = TokenAction(`INVALID_CLIENT`) TokenAction_INTERNAL_SERVER_ERROR = TokenAction(`INTERNAL_SERVER_ERROR`) TokenAction_BAD_REQUEST = TokenAction(`BAD_REQUEST`) TokenAction_PASSWORD = TokenAction(`PASSWORD`) TokenAction_OK = TokenAction(`OK`) )
View Source
const ( TokenCreateAction_INTERNAL_SERVER_ERROR = TokenCreateAction(`INTERNAL_SERVER_ERROR`) TokenCreateAction_BAD_REQUEST = TokenCreateAction(`BAD_REQUEST`) TokenCreateAction_FORBIDDEN = TokenCreateAction(`FORBIDDEN`) TokenCreateAction_OK = TokenCreateAction(`OK`) )
View Source
const ( TokenFailAction_INTERNAL_SERVER_ERROR = TokenFailAction(`INTERNAL_SERVER_ERROR`) TokenFailAction_BAD_REQUEST = TokenFailAction(`BAD_REQUEST`) )
View Source
const ( TokenFailReason_UNKNOWN = TokenFailReason(`UNKNOWN`) TokenFailReason_INVALID_RESOURCE_OWNER_CREDENTIALS = TokenFailReason(`INVALID_RESOURCE_OWNER_CREDENTIALS`) )
View Source
const ( TokenIssueAction_INTERNAL_SERVER_ERROR = TokenIssueAction(`INTERNAL_SERVER_ERROR`) TokenIssueAction_OK = TokenIssueAction(`OK`) )
View Source
const ( TokenUpdateAction_INTERNAL_SERVER_ERROR = TokenUpdateAction(`INTERNAL_SERVER_ERROR`) TokenUpdateAction_BAD_REQUEST = TokenUpdateAction(`BAD_REQUEST`) TokenUpdateAction_FORBIDDEN = TokenUpdateAction(`FORBIDDEN`) TokenUpdateAction_NOT_FOUND = TokenUpdateAction(`NOT_FOUND`) TokenUpdateAction_OK = TokenUpdateAction(`OK`) )
View Source
const ( UserInfoAction_INTERNAL_SERVER_ERROR = UserInfoAction(`INTERNAL_SERVER_ERROR`) UserInfoAction_BAD_REQUEST = UserInfoAction(`BAD_REQUEST`) UserInfoAction_UNAUTHORIZED = UserInfoAction(`UNAUTHORIZED`) UserInfoAction_FORBIDDEN = UserInfoAction(`FORBIDDEN`) UserInfoAction_OK = UserInfoAction(`OK`) )
View Source
const ( UserInfoIssueAction_INTERNAL_SERVER_ERROR = UserInfoIssueAction(`INTERNAL_SERVER_ERROR`) UserInfoIssueAction_BAD_REQUEST = UserInfoIssueAction(`BAD_REQUEST`) UserInfoIssueAction_UNAUTHORIZED = UserInfoIssueAction(`UNAUTHORIZED`) UserInfoIssueAction_FORBIDDEN = UserInfoIssueAction(`FORBIDDEN`) UserInfoIssueAction_JSON = UserInfoIssueAction(`JSON`) UserInfoIssueAction_JWT = UserInfoIssueAction(`JWT`) )
Variables ¶
This section is empty.
Functions ¶
This section is empty.
Types ¶
type AccessToken ¶
type AccessToken struct {
//
AccessTokenHash string `json:"accessTokenHash"`
//
RefresthTokenHash string `json:"refreshTokenHash"`
//
ClientId uint64 `json:"clientId"`
//
Subject string `json:"subject"`
//
GrantType types.GrantType `json:"grantType"`
//
Scopes []string `json:"scopes"`
//
AccessTokenExpiresAt uint64 `json:"accessTokenExpiresAt"`
//
RefreshTokenExpiresAt uint64 `json:"refreshTokenExpiresAt"`
//
CreatedAt uint64 `json:"createdAt"`
//
LastRefreshedAt uint64 `json:"lastRefreshedAt"`
//
Properties []Property `json:"properties"`
}
type Address ¶
type Address struct {
Formatted string `json:"formatted"`
StreetAddress string `json:"street_address"`
Locality string `json:"locality"`
Region string `json:"region"`
PostalCode string `json:"postal_code"`
Country string `json:"country"`
}
Address represents the address claim defined in OIDC Core, Section 5.1.1.
type ApiResponse ¶
type ApiResponse struct {
// The code of the result of an Authlete API call.
ResultCode string `json:"resultCode"`
// The message of the result of an Authlete API call.
ResultMessage string `json:"resultMessage"`
}
ApiResponse is the base class of classes that represent responses from Authlete APIs.
type AuthorizationAction ¶
type AuthorizationAction string
type AuthorizationFailAction ¶
type AuthorizationFailAction string
type AuthorizationFailReason ¶
type AuthorizationFailReason string
type AuthorizationFailRequest ¶
type AuthorizationFailRequest struct {
// The ticket issued by Authlete's /api/auth/authorization API.
Ticket string `json:"ticket"`
// The reason of the failure of the authorization request.
Reason AuthorizationFailReason `json:"reason"`
// The custom description about the authorization failure.
Description string `json:"description"`
}
Request to Authlete's /api/auth/authorization/fail API.
type AuthorizationFailResponse ¶
type AuthorizationFailResponse struct {
ApiResponse
// The next action that the authorization server should take.
Action AuthorizationFailAction `json:"action"`
// The response content which can be used to generated a response to the client.
ResponseContent string `json:"responseContent"`
}
Response from Authlete's /api/auth/authorization/fail API.
type AuthorizationIssueAction ¶
type AuthorizationIssueAction string
type AuthorizationIssueRequest ¶
type AuthorizationIssueRequest struct {
// The ticket issued by Authlete's /api/auth/authorization API.
Ticket string `json:"ticket"`
// The subject (unique identifier) of the user.
Subject string `json:"subject"`
// The value of the `sub` claim in an ID token.
//
// When this property is empty, the value of Subject is used as
// the value of the `sub` claim.
Sub string `json:"sub"`
// The time when the use was authenticated. (Seconds since epoch)
AuthTime uint64 `json:"authTime"`
// The authentication context class reference.
Acr string `json:"acr"`
// Claims in JSON format.
Claims string `json:"claims"`
// Properties to associate with tokens.
Properties []Property `json:"properties"`
// Scopes to associate with tokens.
//
// When this property is empty, the scopes specified in the original
// authorization request are used.
Scopes []string `json:"scopes"`
}
Request to Authlete's /api/auth/authorization/issue API.
type AuthorizationIssueResponse ¶
type AuthorizationIssueResponse struct {
ApiResponse
// The next action that the authorization server should take.
Action AuthorizationIssueAction `json:"action"`
// The response content which can be used to generated a response to the client.
ResponseContent string `json:"responseContent"`
// The issued access token.
//
// An access token is issued when the `response_type` request parameter of
// the authorization request includes `token`.
AccessToken string `json:"accessToken"`
// The expiration date of the access token.
//
// The date in milliseconds since the Unix epoch at which the access token
// will expire.
AccessTokenExpiresAt uint64 `json:"accessTokenExpiresAt"`
// The duration of the access token in seconds.
AccessTokenDuration uint64 `json:"accessTokenDuration"`
// The issued ID token.
//
// An ID token is issued when the `response_type` request parameter of the
// authorization request includes `id_token`.
IdToken string `json:"idToken"`
// The issued authorization code.
//
// An authorization code is issued when the `response_type` request parameter
// of the authorization request includes `code`.
AuthorizationCode string `json:"authorizationCode"`
// The issued acces token in JWT format.
//
// If the authorization server is configued to issue JWT-based access tokens
// (= if Service.AccessTokenSignAlg returns a non-nil value), a JWT-based
// access token is issued along with the original random-string one.
JwtAcessToken string `json:"jwtAccessToken"`
}
Response from Authlete's /api/auth/authorization/issue API.
type AuthorizationRequest ¶
type AuthorizationRequest struct {
// Request parameters to the authorization endpoint.
//
// The format is `application/x-www-form-urlencoded`.
Parameters string `json:"parameters"`
}
type AuthorizationResponse ¶
type AuthorizationResponse struct {
ApiResponse
// The next action that the authorization server should take.
Action AuthorizationAction `json:"action"`
//
Service Service `json:"service"`
//
Client Client `json:"client"`
//
Display types.Display `json:"display"`
//
MaxAge uint32 `json:"maxAge"`
//
Scopes []Scope `json:"scopes"`
//
UiLocales []string `json:"uiLocales"`
//
ClaimsLocales []string `json:"claimsLocales"`
//
Claims []string `json:"claims"`
//
AcrEssential bool `json:"acrEssential"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
//
Acrs []string `json:"acrs"`
//
Subject string `json:"subject"`
//
LoginHint string `json:"loginHint"`
//
Prompts []types.Prompt `json:"prompts"`
//
RequestObjectPayload string `json:"requestObjectPayload"`
//
IdTokenClaims string `json:"idTokenClaims"`
//
UserInfoClaims string `json:"userInfoClaims"`
//
ResponseContent string `json:"responseContent"`
//
Ticket string `json:"ticket"`
}
type AuthorizedClientListResponse ¶
type AuthorizedClientListResponse struct {
ClientListResponse
Subject string `json:"subject"`
}
type BackchannelAuthenticationAction ¶
type BackchannelAuthenticationAction string
type BackchannelAuthenticationCompleteAction ¶
type BackchannelAuthenticationCompleteAction string
type BackchannelAuthenticationCompleteRequest ¶
type BackchannelAuthenticationCompleteRequest struct {
//
Ticket string `json:"ticket"`
//
Result BackchannelAuthenticationCompleteResult `json:"result"`
//
Subject string `json:"subject"`
//
Sub string `json:"sub"`
//
AuthTime uint64 `json:"authTime"`
//
Acr string `json:"acr"`
//
Claims string `json:"claims"`
//
Properties []Property `json:"properties"`
//
Scopes []string `json:"scopes"`
//
ErrorDescription string `json:"errorDescription"`
//
ErrorUri string `json:"errorUri"`
}
type BackchannelAuthenticationCompleteResponse ¶
type BackchannelAuthenticationCompleteResponse struct {
ApiResponse
//
Action BackchannelAuthenticationCompleteAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
ClientId uint64 `json:"clientId"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientName string `json:"clientName"`
//
DeliveryMode types.DeliveryMode `json:"deliveryMode"`
//
ClientNotificationEndpoint string `json:"clientNotificationEndpoint"`
//
ClientNotificationToken string `json:"clientNotificationToken"`
//
AuthReqId string `json:"authReqId"`
//
AccessToken string `json:"accessToken"`
//
RefreshToken string `json:"refreshToken"`
//
IdToken string `json:"idToken"`
//
AccessTokenDuration uint64 `json:"accessTokenDuration"`
//
RefreshTokenDuration uint64 `json:"refreshTokenDuration"`
//
IdTokenDuration uint64 `json:"idTokenDuration"`
//
JwtAccessToken string `json:"jwtAccessToken"`
}
type BackchannelAuthenticationCompleteResult ¶
type BackchannelAuthenticationCompleteResult string
type BackchannelAuthenticationFailAction ¶
type BackchannelAuthenticationFailAction string
type BackchannelAuthenticationFailReason ¶
type BackchannelAuthenticationFailReason string
type BackchannelAuthenticationFailRequest ¶
type BackchannelAuthenticationFailRequest struct {
//
Ticket string `json:"ticket"`
//
Reason BackchannelAuthenticationFailReason `json:"reason"`
//
ErrorDescription string `json:"errorDescription"`
//
ErrorUri string `json:"errorUri"`
}
type BackchannelAuthenticationFailResponse ¶
type BackchannelAuthenticationFailResponse struct {
ApiResponse
//
Action BackchannelAuthenticationFailAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
}
type BackchannelAuthenticationIssueAction ¶
type BackchannelAuthenticationIssueAction string
type BackchannelAuthenticationIssueRequest ¶
type BackchannelAuthenticationIssueRequest struct {
//
Ticket string `json:"ticket"`
}
type BackchannelAuthenticationIssueResponse ¶
type BackchannelAuthenticationIssueResponse struct {
ApiResponse
//
Action BackchannelAuthenticationIssueAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
AuthReqId string `json:"authReqId"`
//
ExpiresIn uint32 `json:"expiresIn"`
//
Interval uint32 `json:"interval"`
}
type BackchannelAuthenticationResponse ¶
type BackchannelAuthenticationResponse struct {
ApiResponse
//
Action BackchannelAuthenticationAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
ClientId uint64 `json:"clientId"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientName string `json:"clientName"`
//
ClientAuthMethod types.ClientAuthMethod `json:"clientAuthMethod"`
//
DeliveryMode types.DeliveryMode `json:"deliveryMode"`
//
Scopes []Scope `json:"scopes"`
//
ClaimNames []string `json:"claimNames"`
//
ClientNotificationToken string `json:"clientNotificationToken"`
//
Acrs []string `json:"acrs"`
//
HintType types.UserIdentificationHintType `json:"hintType"`
//
Hint string `json:"hint"`
//
Sub string `json:"sub"`
//
BindingMessage string `json:"bindingMessage"`
//
UserCode string `json:"userCode"`
//
UserCodeRequired bool `json:"userCodeRequired"`
//
RequestedExpiry uint32 `json:"requestedExpiry"`
//
RequestContext string `json:"requestContext"`
//
Warnings []string `json:"warnings"`
//
Ticket string `json:"ticket"`
}
type Client ¶
type Client struct {
// The developer of this client.
Developer string `json:"developer"`
// The client ID
ClientId uint64 `json:"clientId"`
// The alias of the client ID.
ClientIdAlias string `json:"clientIdAlias"`
// The flag which indicates whether the feature of Clien ID Alias is enabled.
ClientIdAliasEnabled bool `json:"clientIdAliasEnabled"`
// The client secret.
ClientSecret string `json:"clientSecret"`
// The client type.
ClientType types.ClientType `json:"clientType"`
// Redirect URIs.
RedirectUris []string `json:"redirectUris"`
// Response types that this client declares it may use.
ResponseTypes []types.ResponseType `json:"responseTypes"`
// Grant types that this client declares it may use.
GrantTypes []types.GrantType `json:"grantTypes"`
// The application type.
ApplicationType types.ApplicationType `json:"applicationType"`
// Email addresses of contacts.
Contacts []string `json:"contacts"`
// The name of the client.
ClientName string `json:"clientName"`
// Client names for various locales.
ClientNames []TaggedValue `json:"clientNames"`
// The URL where the logo image is located.
LogoUri string `json:"logoUri"`
// Logo URIs for various locales.
LogoUris []TaggedValue `json:"logoUris"`
// The URL of the website for the client.
ClientUri string `json:"clientUri"`
// Client URIs for various locales.
ClientUris []TaggedValue `json:"clientUris"`
// The URL of the policy page.
PolicyUri string `json:"policyUri"`
// Policy URIs for various locales.
PolicyUris []TaggedValue `json:"policyUris"`
// The URL of the Terms Of Service page.
TosUri string `json:"tosUri"`
// TOS URIs for various locales.
TosUris []TaggedValue `json:"tosUris"`
// The URL of the JWK Set document.
JwksUri string `json:"jwksUri"`
// The sector identifier computed based on the sector identifier URI or redirect URIs.
SectorIdentifier string `json:"sectorIdentifier"`
// The sector identifier URI.
SectorIdentifierUri string `json:"sectorIdentifierUri"`
// The subject type.
SubjectType types.SubjectType `json:"subjectType"`
// JWS 'alg' for ID tokens.
IdTokenSignAlg types.JWSAlg `json:"idTokenSignAlg"`
// JWE 'alg' for ID tokens.
IdTokenEncryptionAlg types.JWEAlg `json:"idTokenEncryptionAlg"`
// JWE 'enc' for ID tokens.
IdTokenEncryptionEnc types.JWEEnc `json:"idTokenEncryptionEnc"`
// JWS 'alg' for userinfo responses.
UserInfoSignAlg types.JWSAlg `json:"userInfoSignAlg"`
// JWE 'alg' for userinfo responses.
UserInfoEncryptionAlg types.JWEAlg `json:"userInfoEncryptionAlg"`
// JWE 'enc' for userinfo responses.
UserInfoEncryptionEnc types.JWEEnc `json:"userInfoEncryptionEnc"`
// JWS 'alg' for request objects.
RequestSignAlg types.JWSAlg `json:"requestSignAlg"`
// JWE 'alg' for request objects.
RequestEncryptionAlg types.JWEAlg `json:"requestEncryptionAlg"`
// JWE 'enc' for request objects.
RequestEncryptionEnc types.JWEEnc `json:"requestEncryptionEnc"`
// Client authentication method at the token endpoint.
TokenAuthMethod types.ClientAuthMethod `json:"tokenAuthMethod"`
// JWS 'alg' for client assertions at the token endpoint.
TokenAuthSignAlg types.JWSAlg `json:"tokenAuthSignAlg"`
// The default max age.
DefaultMaxAge uint32 `json:"defaultMaxAge"`
// Default ACR values.
DefaultAcrs []string `json:"defaultAcrs"`
// The flag which indicates whether this client always requires `auth_time`.
AuthTimeRequired bool `json:"authTimeRequired"`
// The URL that can initiate login for this client application.
LoginUri string `json:"loginUri"`
// The request URIs that this client declares it may use.
RequestUris []string `json:"requestUri"`
// The description about this client.
Description string `json:"description"`
// Descriptions for various locales.
Descriptions []TaggedValue `json:"descriptions"`
// The time at which this client was created. Milliseconds since the Unix epoch.
CreatedAt uint64 `json:"createdAt"`
// The time at which this client was last modified. MIlliseconds since the Unix epoch.
ModifiedAt uint64 `json:"modifiedAt"`
// The extended information about this client.
Extension ClientExtension `json:"extension"`
// The subject distinguished name of the certificate this client will use in MTLS.
TlsClientAuthSubjectDn string `json:"tlsClientAuthSubjectDn"`
// The DNS subject alternative name of the certificate this client will use in MTLS.
TlsClientAuthSanDns string `json:"tlsClientAuthSanDns"`
// The URI subject alternative name of the certificate this client will use in MTLS.
TlsClientAuthSanUri string `json:"tlsClientAuthSanUri"`
// The IP address subject alternative name of the certificate this client will use in MTLS.
TlsClientAuthSanIp string `json:"tlsClientAuthSanIp"`
// The email subject alternative name of the certificate this client will use in MTLS.
TlsClientAuthSanEmail string `json:"tlsClientAuthSanEmail"`
// The flag which indicates whether certificate binding is enabled.
TlsClientCertificateBoundAccessTokens bool `json:"tlsClientCertificateBoundAccessTokens"`
// The key ID of the JWK that represents a self-signed certificate used for client authentication.
SelfSignedCertificateKeyId string `json:"selfSignedCertificateKeyId"`
// The software ID.
SoftwareId string `json:"softwareId"`
// The software version
SoftwareVersion string `json:"softwareVersion"`
// JWS 'alg' for authorization responses in JWT format (JARM).
AuthorizationSignAlg types.JWSAlg `json:"authorizationSignAlg"`
// JWE 'alg' for authorization responses in JWT format (JARM).
AuthorizationEncryptionAlg types.JWEAlg `json:"authorizationEncryptionAlg"`
// JWE 'enc' for authorization responses in JWT format (JARM).
AuthorizationEncryptionEnc types.JWEEnc `json:"authorizationEncryptionEnc"`
// Backchannel token delivery mode.
BcDeliveryMode types.DeliveryMode `json:"bcDeliveryMode"`
// Backchannel client notification endpoint.
BcNotificationEndpoint string `json:"bcNotificationEndpoint"`
// JWS 'alg' for backchannel authentication request in JWT format.
BcRequestSignAlg types.JWSAlg `json:"bcRequestSignAlg"`
// The flag which indicates whether user_code is required in backchannel authentication request.
BcUserCodeRequired bool `json:"bcUserCodeRequired"`
// The flag which indicates whether this client has been registered dynamically.
DynamicallyRegistered bool `json:"dynamicallyRegistered"`
// The hash of the registration access token.
RegistrationAccessTokenHash string `json:"registrationAccessTokenHash"`
}
type ClientAuthorizationDeleteRequest ¶
type ClientAuthorizationDeleteRequest struct {
Subject string `json:"subject"`
}
type ClientExtension ¶
type ClientListResponse ¶
type ClientRegistrationAction ¶
type ClientRegistrationAction string
type ClientRegistrationResponse ¶
type ClientRegistrationResponse struct {
ApiResponse
//
Action ClientRegistrationAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
Client Client `json:"client"`
}
type ClientSecretUpdateRequest ¶
type ClientSecretUpdateRequest struct {
ClientSecret string `json:"clientSecret"`
}
type DeviceAuthorizationAction ¶
type DeviceAuthorizationAction string
type DeviceAuthorizationResponse ¶
type DeviceAuthorizationResponse struct {
ApiResponse
//
Action DeviceAuthorizationAction `json:"action"`
//
ResponseContent string `json:"responseContet"`
//
ClientId uint64 `json:"clientId"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
//
ClientName string `json:"clientName"`
//
ClientAuthMethod types.ClientAuthMethod `json:"clientAuthMethod"`
//
Scopes []Scope `json:"scopes"`
//
ClaimNames []string `json:"claimNames"`
//
Acrs []string `json:"acrs"`
//
DeviceCode string `json:"deviceCode"`
//
UserCode string `json:"userCode"`
//
VerificationUri string `json:"verificationUri"`
//
VerificatinoUriComplete string `json:"verificationUriComplete"`
//
ExpiresIn uint32 `json:"expiresIn"`
//
Interval uint32 `json:"interval"`
//
Warnings []string `json:"warnings"`
}
type DeviceCompleteAction ¶
type DeviceCompleteAction string
type DeviceCompleteRequest ¶
type DeviceCompleteRequest struct {
//
UserCode string `json:"userCode"`
//
Result DeviceCompleteResult `json:"result"`
//
Sujbect string `json:"subject"`
//
Sub string `json:"sub"`
//
AuthTime uint64 `json:"authTime"`
//
Acr string `json:"acr"`
//
Claims string `json:"claims"`
//
Properties []Property `json:"properties"`
//
Scopes []string `json:"scopes"`
//
ErrorDescription string `json:"errorDescription"`
//
ErrorUri string `json:"errorUri"`
}
type DeviceCompleteResponse ¶
type DeviceCompleteResponse struct {
ApiResponse
//
Action DeviceCompleteAction `json:"action"`
}
type DeviceCompleteResult ¶
type DeviceCompleteResult string
type DeviceVerificationAction ¶
type DeviceVerificationAction string
type DeviceVerificationRequest ¶
type DeviceVerificationRequest struct {
UserCode string `json:"userCode"`
}
type DeviceVerificationResponse ¶
type DeviceVerificationResponse struct {
ApiResponse
//
Action DeviceVerificationAction `json:"action"`
//
ClientId uint64 `json:"clientId"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
//
ClientName string `json:"clientName"`
//
Scopes []Scope `json:"scopes"`
//
ClaimNames []string `json:"claimNames"`
//
Acrs []string `json:"acrs"`
//
ExpiresAt uint64 `json:"expiresAt"`
}
type GrantedScopesGetResponse ¶
type GrantedScopesGetResponse struct {
ApiResponse
//
ServiceApiKey uint64 `json:"serviceApiKey"`
//
ClientId uint64 `json:"clientId"`
//
Subject string `json:"suject"`
//
LatestGrantedScopes []string `json:"latestGrantedScopes"`
//
MergedGrantedScopes []string `json:"mergedGrantedScopes"`
//
ModifiedAt uint64 `json:"modifiedAt"`
}
type IntrospectionAction ¶
type IntrospectionAction string
type IntrospectionRequest ¶
type IntrospectionResponse ¶
type IntrospectionResponse struct {
ApiResponse
//
Action IntrospectionAction `json:"action"`
//
ClientId uint64 `json:"clientId"`
//
Subject string `json:"subject"`
//
Scopes []string `json:"scopes"`
//
Existent bool `json:"existent"`
//
Usable bool `json:"usable"`
//
Sufficient bool `json:"sufficient"`
//
Refreshable bool `json:"refreshable"`
//
ResponseContent string `json:"responseContent"`
//
ExpiresAt uint64 `json:"expiresAt"`
//
Properties []Property `json:"properties"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
//
CertificateThumbprint string `json:"certificateThumbprint"`
}
type JoseVerifyRequest ¶
type JoseVerifyResponse ¶
type RequestObjectAction ¶
type RequestObjectAction string
type RequestObjectRequest ¶
type RequestObjectResponse ¶
type RequestObjectResponse struct {
ApiResponse
//
Action RequestObjectAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
ClientAuthMethod types.ClientAuthMethod `json:"clientAuthMethod"`
//
RequestUri string `json:"requestUri"`
}
type RevocationAction ¶
type RevocationAction string
type RevocationRequest ¶
type RevocationResponse ¶
type RevocationResponse struct {
ApiResponse
//
Action RevocationAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
}
type Scope ¶
type Scope struct {
Name string `json:"name"`
DefaultEntry bool `json:"defaultEntry"`
Description string `json:"description"`
Descriptions []TaggedValue `json:"descriptions"`
Attributes []Pair `json:"attributes"`
}
type Service ¶
type Service struct {
// The name of the service.
ServiceName string `json:"serviceName"`
// The API key of the service.
ApiKey uint64 `json:"apiKey"`
// The API secret of the service.
ApiSecret string `json:"apiSecret"`
// The issuer identifier.
Issuer string `json:"issuer"`
// The URL of the authorization endpoint.
AuthorizationEndpoint string `json:"authorizationEndpoint"`
// The URL of the token endpoint.
TokenEndpoint string `json:"tokenEndpoint"`
// The URL of the revocation endpoint.
RevocationEndpoint string `json:"revocationEndpoint"`
// Client authentication methods supported at the revocation endpoint.
SupportedRevocationAuthMethods []types.ClientAuthMethod `json:"supportedRevocationAuthMethods"`
// The URL of the userinfo endpoint.
UserInfoEndpoint string `json:"userInfoEndpoint"`
// The URI of the JWK Set document.
JwksUri string `json:"jwksUri"`
// The content of the JWK Set document.
Jwks string `json:"jwks"`
// The URL of the registration endpoint.
RegistrationEndpoint string `json:"registrationEndpoint"`
// The URL of the registration management endpoint.
RegistrationManagementEndpoint string `json:"registrationManagementEndpoint"`
// Supported scopes.
Scopes []Scope `json:"scopes"`
// Supported response types.
SupportedResponseTypes []types.ResponseType `json:"supportedResponseTypes"`
// Supported grant types.
SupportedGrantTypes []types.GrantType `json:"supportedGrantTypes"`
// String supported ACRs.
SupportedAcrs []string `json:"supportedAcrs"`
// Client authentication methods supported at the token endpoint.
SupportedTokenAuthMethods []types.ClientAuthMethod `json:"supportedTokenAuthMethods"`
// Supported displays.
SupportedDisplays []types.Display `json:"supportedDisplays"`
// Supported claim types.
SupportedClaimTypes []types.ClaimType `json:"supportedClaimTypes"`
// Supported claims.
SupportedClaims []string `json:"supportedClaims"`
// The URL of the service documentation.
ServiceDocumentation string `json:"serviceDocumentation"`
// Supported claim locales.
SupportedClaimLocales []string `json:"supportedClaimLocales"`
// Supported UI locales.
SupportedUiLocales []string `json:"supportedUiLocales"`
// The URL of the policy document.
PolicyUri string `json:"policyUri"`
// The URL of the terms of service.
TosUri string `json:"tosUri"`
// The URL of the authentication callback endpoint.
AuthenticationCallbackEndpoint string `json:"authenticationCallbackEndpoint"`
// The API key to access the authentication callback endpoint.
AuthenticationCallbackApiKey string `json:"authenticationCallbackApiKey"`
// The API secret to access the authentication callback endpoint.
AuthenticationCallbackApiSecret string `json:"authenticationCallbackApiSecret"`
// Supported SNSes.
SupportedSnses []types.Sns `json:"supportedSnses"`
// Credentials of supported SNSes.
SnsCredentials []SnsCredentials `json:"snsCredentials"`
// The URL of the developer authentication callback endpoint.
DeveloperAuthenticationCallbackEndpoint string `json:"developerAuthenticationCallbackEndpoint"`
// The API key to access the developer authentication callback endpoint.
DeveloperAuthenticationCallbackApiKey string `json:"developerAuthenticationCallbackApiKey"`
// The API secret to access the developer authentication callback endpoint.
DeveloperAuthenticationCallbackApiSecret string `json:"developerAuthenticationCallbackApiSecret"`
// The upper limit of the number of client applications per developer.
ClientsPerDeveloper uint16 `json:"clientsPerDeveloper"`
// The flag which indicates whether the direct authorization endpoint is enabled.
DirectAuthorizationEndpointEnabled bool `json:"directAuthorizationEndpointEnabled"`
// The flag which indicates whether the direct token endpoint is enabled.
DirectTokenEndpointEnabled bool `json:"directTokenEndpointEnabled"`
// The flag which indicates whether the direct revocation endpoint is enabled.
DirectRevocationEndpointEnabled bool `json:"directRevocationEndpointEnabled"`
// The flag which indicates whether the direct userinfo endpoint is enabled.
DirectUserInfoEndpointEnabled bool `json:"directUserInfoEndpointEnabled"`
// The flag which indicates whether the direct jwks endpoint is enabled.
DirectJwksEndpointEnabled bool `json:"directJwksEndpointEnabled"`
// The flag which indicates whether the direct introspection endpoint is enabled.
DirectIntrospectionEndpointEnabled bool `json:"directIntrospectionEndpointEnabled"`
// The flag which indicates whether the number of access tokens per subject is limited to at most 1.
SingleAccessTokenPerSubject bool `json:"singleAccessTokenPerSubject"`
// The flag which indicates whether PKCE is always required.
PkceRequired bool `json:"pkceRequired"`
// The flag which indicates whether S256 is always required for code_challenge_method.
PkceS256Required bool `json:"pkceS256Required"`
// The flag which indicates whether refresh tokens remain valid after use.
RefreshTokenKept bool `json:"refreshTokenKept"`
// The flag which indicates whether `error_description` is omitted.
ErrorDescriptionOmitted bool `json:"errorDescriptionOmitted"`
// The flag which indicates whether `error_uri` is omitted.
ErrorUriOmitted bool `json:"errorUriOmitted"`
// The flag which indicates whether the feature of Client ID Alias is enabled.
ClientIdAliaseEnabled bool `json:"clientIdAliasEnabled"`
// Supported service profiles.
SupportedServiceProfiles []types.ServiceProfile `json:"supportedServiceProfiles"`
// The flag which indicates whether certificate binding is supported.
TlsClientCertificateBoundAccessTokens bool `json:"tlsClientCertificateBoundAccessTokens"`
// The URL of the introspection endpoint.
IntrospectionEndpoint string `json:"introspectionEndpoint"`
// Client authentication methods supports at the introspection endpoint.
SupportedIntrospectionAuthMethods []types.ClientAuthMethod `json:"supportedIntrospectionAuthMethods"`
// The flag which indicates whether certification chain is validated for MTLS.
MutualTlsValidatePkiCertChain bool `json:"mutualTlsValidatePkiCertChain"`
// The list of trusted root certificates for MTLS.
TrustedRootCertificates []string `json:"trustedRootCertificates"`
// The flag which indicates whether Dynamic Client Registration is supported.
DynamicRegistrationSupported bool `json:"dynamicRegistrationSupported"`
// The description of this service.
Description string `json:"description"`
// The type of access token.
AccessTokenType string `json:"accessTokenType"`
// Signature algorithm of JWT-based access tokens.
//
// When this property is not nil, access tokens issued by this service are
// JWS. Otherwise, access tokens are random strings as before.
AccessTokenSignAlg types.JWSAlg `json:"accessTokenSignAlg"`
// The duration of access tokens.
AccessTokenDuration uint64 `json:"accessTokenDuration"`
// The duration of refresh tokens.
RefreshTokenDuration uint64 `json:"refreshTokenDuration"`
// The duration of ID tokens.
IdTokenDuration uint64 `json:"idTokenDuration"`
// The duration of authorization response JWTs.
AuthorizationResponseDuration uint64 `json:"authorizationResponseDuration"`
// The key ID to identify a JWK used for signing JWT-based access tokens.
AccessTokenSignatureKeyId string `json:"accessTokenSignatureKeyId"`
// The key ID to identify a JWK used for signing authorization responses.
AuthorizationSignatureKeyId string `json:"authorizationSignatureKeyId"`
// The key ID to identify a JWK used for signing ID tokens.
IdTokenSignatureKeyId string `json:"idTokenSignatureKeyId"`
// The key ID to identify a JWK used for signing userinfo responses.
UserInfoSignatureKeyId string `json:"userInfoSignatureKeyId"`
// Supported backchannel token delivery modes.
SupportedBackchannelTokenDeliveryModes []types.DeliveryMode `json:"supportedBackchannelTokenDeliveryModes"`
// The URL of the backchannel authentication endpoint.
BackchannelAuthenticationEndpoint string `json:"backchannelAuthenticationEndpoint"`
// The flag which indicates whether `user_code` is supported at the backchannel authentication endpoint.
BackchannelUserCodeParameterSupported bool `json:"backchannelUserCodeParameterSupported"`
// The duration of backchannel authentication request IDs.
BackchannelAuthReqIdDuration uint64 `json:"backchannelAuthReqIdDuration"`
// The minimum interval in seconds between polling requests to the token endpoint in CIBA flows.
BachcannelPollingInterval uint16 `json:"backchannelPollingInterval"`
// The flag which indicates whether `binding_message` is always required for FAPI.
BackchannelBindingMessageRequiredInFapi bool `json:"backchannelBindingMessageRequiredInFapi"`
// The allowable clock skew in seconds between the server and clients.
AllowableClockSkew uint16 `json:"allowableClockSkew"`
// The URL of the device authorization endpoint.
DeviceAuthorizationEndpoint string `json:"deviceAuthorizationEndpoint"`
// The verification URI for the device flow.
DeviceVerificationUri string `json:"deviceVerificationUri"`
// The verification URI for the device flow with a placeholder for a user code.
DeviceVerificationUriComplete string `json:"deviceVerificationUriComplete"`
// The duration of device verification codes and end-user verification codes.
DeviceFlowCodeDuration uint64 `json:"deviceFlowCodeDuration"`
// The minimum interval in seconds between polling requests to the token endpoint in Device Flow.
DeviceFlowPollingInterval uint16 `json:"deviceFlowPollingInterval"`
// The character set for end-user verification codes for Device Flow.
UserCodeCharset types.UserCodeCharset `json:"userCodeCharset"`
// The length of end-user verification codes for Device Flow.
UserCodeLength uint8 `json:"userCodeLength"`
// The URL of the request object endpoint.
RequestObjectEndpoint string `json:"requestObjectEndpoint"`
// MTLS endpoint aliases.
MtlsEndpointAliases []NamedUri `json:"mtlsEndpointAliases"`
}
type ServiceListResponse ¶
type SnsCredentials ¶
type StandardIntrospectionAction ¶
type StandardIntrospectionAction string
type StandardIntrospectionRequest ¶
type StandardIntrospectionRequest struct {
Parameters string `json:"parameters"`
}
type StandardIntrospectionResponse ¶
type StandardIntrospectionResponse struct {
ApiResponse
//
Action StandardIntrospectionAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
}
type TaggedValue ¶
type TokenAction ¶
type TokenAction string
type TokenCreateAction ¶
type TokenCreateAction string
type TokenCreateRequest ¶
type TokenCreateRequest struct {
//
GrantType types.GrantType `json:"grantType"`
//
ClientId uint64 `json:"clientId"`
//
Subject string `json:"subject"`
//
Scopes []string `json:"scopes"`
//
AccessTokenDuration uint64 `json:"accessTokenDuration"`
//
RefreshTokenDuration uint64 `json:"refreshTokenDuration"`
//
Properties []Property `json:"properties"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
//
AccessToken string `json:"accessToken"`
//
RefreshToken string `json:"refreshToken"`
//
AccessTokenPersistent bool `json:"accessTokenPersistent"`
}
type TokenCreateResponse ¶
type TokenCreateResponse struct {
ApiResponse
//
Action TokenCreateAction `json:"action"`
//
GrantType types.GrantType `json:"grantType"`
//
ClientId uint64 `json:"clientId"`
//
Subject string `json:"subject"`
//
Scopes []string `json:"scopes"`
//
AccessToken string `json:"accessToken"`
//
TokenType string `json:"tokenType"`
//
ExpiresIn uint64 `json:"expiresIn"`
//
ExpiresAt uint64 `json:"expiresAt"`
//
RefreshToken string `json:"refreshToken"`
//
Properties []Property `json:"properties"`
}
type TokenFailAction ¶
type TokenFailAction string
type TokenFailReason ¶
type TokenFailReason string
type TokenFailRequest ¶
type TokenFailRequest struct {
//
Ticket string `json:"ticket"`
//
Reason TokenFailReason `json:"reason"`
}
type TokenFailResponse ¶
type TokenFailResponse struct {
ApiResponse
//
Action TokenFailAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
}
type TokenIssueAction ¶
type TokenIssueAction string
type TokenIssueRequest ¶
type TokenIssueResponse ¶
type TokenIssueResponse struct {
ApiResponse
//
Action TokenIssueAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
AccessToken string `json:"accessToken"`
//
AccessTokenExpiresAt uint64 `json:"accessTokenExpiresAt"`
//
AccessTokenDuration uint64 `json:"accessTokenDuration"`
//
RefreshToken string `json:"refreshToken"`
//
RefreshTokenExpiresAt uint64 `json:"refreshTokenExpiresAt"`
//
RefreshTokenDuration uint64 `json:"refreshTokenDuration"`
//
ClientId uint64 `json:"clientId"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
Subject string `json:"subject"`
//
Scopes []string `json:"scopes"`
//
Properties []Property `json:"properties"`
//
JwtAccessToken string `json:"jwtAccessToken"`
}
type TokenListResponse ¶
type TokenRequest ¶
type TokenResponse ¶
type TokenResponse struct {
ApiResponse
//
Action TokenAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
//
Username string `json:"username"`
//
Password string `json:"password"`
//
Ticket string `json:"ticket"`
//
AccessToken string `json:"accessToken"`
//
AccessTokenExpiresAt uint64 `json:"accessTokenExpiresAt"`
//
AccessTokenDuration uint64 `json:"accessTokenDuration"`
//
RefreshToken string `json:"refreshToken"`
//
RefresthTokenExpiresAt string `json:"refreshTokenExpiresAt"`
//
RefreshTokenDuration string `json:"refreshTokenDuration"`
//
IdToken string `json:"idToken"`
//
GrantType types.GrantType `json:"grantType"`
//
ClientId uint64 `json:"clientId"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
//
Subject string `json:"subject"`
//
Scopes []string `json:"scopes"`
//
Properties []Property `json:"properties"`
//
JwtAccessToken string `json:"jwtAccessToken"`
//
ClientAuthMethod types.ClientAuthMethod `json:"clientAuthMethod"`
}
type TokenUpdateAction ¶
type TokenUpdateAction string
type TokenUpdateRequest ¶
type TokenUpdateRequest struct {
//
AccessToken string `json:"accessToken"`
//
AccessTokenExpiresAt uint64 `json:"accessTokenExpiresAt"`
//
Scopes []string `json:"scopes"`
//
Properties []Property `json:"properties"`
//
AccessTokenExpiresAtUpdatedOnScopeUpdate bool `json:"accessTokenExpiresAtUpdatedOnScopeUpdate"`
//
AccessTokenPersistent bool `json:"accessTokenPersistent"`
//
AccessTokenHash string `json:"accessTokenHash"`
//
AccessTokenValueUpdated bool `json:"accessTokenValueUpdated"`
}
type TokenUpdateResponse ¶
type TokenUpdateResponse struct {
ApiResponse
//
Action TokenUpdateAction `json:"action"`
//
AccessToken string `json:"accessToken"`
//
TokenType string `json:"tokenType"`
//
AccessTokenExpiresAt uint64 `json:"accessTokenExpiresAt"`
//
Scopes []string `json:"scopes"`
//
Properties []Property `json:"properties"`
}
type UserInfoAction ¶
type UserInfoAction string
type UserInfoIssueAction ¶
type UserInfoIssueAction string
type UserInfoIssueRequest ¶
type UserInfoIssueResponse ¶
type UserInfoIssueResponse struct {
ApiResponse
//
Action UserInfoIssueAction `json:"action"`
//
ResponseContent string `json:"responseContent"`
}
type UserInfoRequest ¶
type UserInfoResponse ¶
type UserInfoResponse struct {
ApiResponse
//
Action UserInfoAction `json:"action"`
//
ClientId uint64 `json:"clientId"`
//
Subject string `json:"subject"`
//
Scopes []string `json:"scopes"`
//
Claims []string `json:"claims"`
//
Token string `json:"token"`
//
ResponseContent string `json:"responseContent"`
//
Properties []Property `json:"properties"`
//
ClientIdAlias string `json:"clientIdAlias"`
//
ClientIdAliasUsed bool `json:"clientIdAliasUsed"`
}
Source Files
¶
- access_token.go
- address.go
- api_response.go
- authorization_action.go
- authorization_fail_action.go
- authorization_fail_reason.go
- authorization_fail_request.go
- authorization_fail_response.go
- authorization_issue_action.go
- authorization_issue_request.go
- authorization_issue_response.go
- authorization_request.go
- authorization_response.go
- authorized_client_list_response.go
- backchannel_authentication_action.go
- backchannel_authentication_complete_action.go
- backchannel_authentication_complete_request.go
- backchannel_authentication_complete_response.go
- backchannel_authentication_complete_result.go
- backchannel_authentication_fail_action.go
- backchannel_authentication_fail_reason.go
- backchannel_authentication_fail_request.go
- backchannel_authentication_fail_response.go
- backchannel_authentication_issue_action.go
- backchannel_authentication_response.go
- bakchannel_authentication_issue_request.go
- bakchannel_authentication_issue_response.go
- bakchannel_authentication_request.go
- client.go
- client_authorization_delete_request.go
- client_authorization_get_list_response.go
- client_authorization_update_request.go
- client_extension.go
- client_list_response.go
- client_registration_action.go
- client_registration_request.go
- client_registration_response.go
- client_secret_refresh_response.go
- client_secret_update_request.go
- client_secret_update_response.go
- device_authorization_action.go
- device_authorization_request.go
- device_authorization_response.go
- device_compete_action.go
- device_complete_reponse.go
- device_complete_request.go
- device_complete_result.go
- device_verification_action.go
- device_verification_request.go
- device_verification_response.go
- granted_scopes_get_response.go
- introspection_action.go
- introspection_request.go
- introspection_response.go
- jose_verify_request.go
- jose_verify_response.go
- named_uri.go
- pair.go
- property.go
- request_object_action.go
- request_object_request.go
- request_object_response.go
- revocation_action.go
- revocation_request.go
- revocation_response.go
- scope.go
- service.go
- service_list_response.go
- sns_credentials.go
- standard_introspection_action.go
- standard_introspection_request.go
- standard_introspection_response.go
- tagged_value.go
- token_action.go
- token_create_action.go
- token_create_request.go
- token_create_response.go
- token_fail_action.go
- token_fail_reason.go
- token_fail_request.go
- token_fail_response.go
- token_issue_action.go
- token_issue_request.go
- token_issue_response.go
- token_list_response.go
- token_request.go
- token_response.go
- token_update_action.go
- token_update_request.go
- token_update_response.go
- userinfo_action.go
- userinfo_issue_action.go
- userinfo_issue_request.go
- userinfo_issue_response.go
- userinfo_request.go
- userinfo_response.go
Click to show internal directories.
Click to hide internal directories.