flowv1

package
v0.0.0-...-7467996 Latest Latest
Warning

This package is not in the latest version of its module.

 Go to latest Published: Jun 17, 2024 License: Apache-2.0 Imports: 16 Imported by: 0

Documentation

Index

Constants

View Source 
const (
	AuthorizationService_Authorize_FullMethodName = "/oidc.flow.v1.AuthorizationService/Authorize"
	AuthorizationService_Token_FullMethodName     = "/oidc.flow.v1.AuthorizationService/Token"
)

Variables

View Source 
var (
	ErrInvalidLength        = fmt.Errorf("proto: negative length found during unmarshaling")
	ErrIntOverflow          = fmt.Errorf("proto: integer overflow")
	ErrUnexpectedEndOfGroup = fmt.Errorf("proto: unexpected end of group")
)
View Source 
var AuthorizationService_ServiceDesc = grpc.ServiceDesc{
	ServiceName: "oidc.flow.v1.AuthorizationService",
	HandlerType: (*AuthorizationServiceServer)(nil),
	Methods: []grpc.MethodDesc{
		{
			MethodName: "Authorize",
			Handler:    _AuthorizationService_Authorize_Handler,
		},
		{
			MethodName: "Token",
			Handler:    _AuthorizationService_Token_Handler,
		},
	},
	Streams:  []grpc.StreamDesc{},
	Metadata: "oidc/flow/v1/flow_api.proto",
}

AuthorizationService_ServiceDesc is the grpc.ServiceDesc for AuthorizationService service. It's only intended for direct use with grpc.RegisterService, and not to be introspected or modified (even as a copy)

View Source 
var File_oidc_flow_v1_flow_api_proto protoreflect.FileDescriptor
View Source 
var File_oidc_flow_v1_flow_proto protoreflect.FileDescriptor
View Source 
var File_oidc_flow_v1_token_grant_proto protoreflect.FileDescriptor

Functions

func RegisterAuthorizationServiceServer 

func RegisterAuthorizationServiceServer(s grpc.ServiceRegistrar, srv AuthorizationServiceServer)

Types

type AuthorizationRequest 

type AuthorizationRequest struct {

	// REQUIRED. OpenID Connect requests MUST contain the openid scope value. If
	// the openid scope value is not present, the behavior is entirely unspecified.
	// Other scope values MAY be present. Scope values used that are not understood
	// by an implementation SHOULD be ignored.
	Scope string `protobuf:"bytes,1,opt,name=scope,proto3" json:"scope,omitempty"`
	// REQUIRED. OAuth 2.0 Response Type value that determines the authorization
	// processing flow to be used, including what parameters are returned from
	// the endpoints used. When using the Authorization Code Flow, this value is
	// code.
	ResponseType string `protobuf:"bytes,2,opt,name=response_type,json=responseType,proto3" json:"response_type,omitempty"`
	// REQUIRED. OAuth 2.0 Client Identifier valid at the Authorization Server.
	ClientId string `protobuf:"bytes,3,opt,name=client_id,json=clientId,proto3" json:"client_id,omitempty"`
	// REQUIRED. Redirection URI to which the response will be sent. This URI
	// MUST exactly match one of the Redirection URI values for the Client
	// pre-registered at the OpenID Provider, with the matching performed as
	// described in Section 6.2.1 of [RFC3986] (Simple String Comparison).
	// When using this flow, the Redirection URI SHOULD use the https scheme;
	// however, it MAY use the http scheme, provided that the Client Type is
	// confidential, as defined in Section 2.1 of OAuth 2.0, and provided the OP
	// allows the use of http Redirection URIs in this case. The Redirection URI
	// MAY use an alternate scheme, such as one that is intended to identify a
	// callback into a native application.
	RedirectUri string `protobuf:"bytes,4,opt,name=redirect_uri,json=redirectUri,proto3" json:"redirect_uri,omitempty"`
	// RECOMMENDED. Opaque value used to maintain state between the request and
	// the callback. Typically, Cross-Site Request Forgery (CSRF, XSRF) mitigation
	// is done by cryptographically binding the value of this parameter with a
	// browser cookie.
	State string `protobuf:"bytes,5,opt,name=state,proto3" json:"state,omitempty"`
	// OPTIONAL. Informs the Authorization Server of the mechanism to be used for
	// returning parameters from the Authorization Endpoint. This use of this
	// parameter is NOT RECOMMENDED when the Response Mode that would be requested
	// is the default mode specified for the Response Type.
	ResponseMode *string `protobuf:"bytes,6,opt,name=response_mode,json=responseMode,proto3,oneof" json:"response_mode,omitempty"`
	// OPTIONAL. String value used to associate a Client session with an ID Token,
	// and to mitigate replay attacks. The value is passed through unmodified from
	// the Authentication Request to the ID Token. Sufficient entropy MUST be
	// present in the nonce values used to prevent attackers from guessing values.
	// https://tools.ietf.org/html/draft-ietf-oauth-security-topics-15#section-4.5.3
	Nonce string `protobuf:"bytes,7,opt,name=nonce,proto3" json:"nonce,omitempty"`
	// OPTIONAL. ASCII string value that specifies how the Authorization Server
	// displays the authentication and consent user interface pages to the End-User.
	Display *string `protobuf:"bytes,8,opt,name=display,proto3,oneof" json:"display,omitempty"`
	// OPTIONAL. Space delimited, case sensitive list of ASCII string values that
	// specifies whether the Authorization Server prompts the End-User for
	// reauthentication and consent.
	Prompt *string `protobuf:"bytes,9,opt,name=prompt,proto3,oneof" json:"prompt,omitempty"`
	// OPTIONAL. Maximum Authentication Age. Specifies the allowable elapsed time
	// in seconds since the last time the End-User was actively authenticated by
	// the OP. If the elapsed time is greater than this value, the OP MUST attempt
	// to actively re-authenticate the End-User. (The max_age request parameter
	// corresponds to the OpenID 2.0 PAPE [OpenID.PAPE] max_auth_age request
	// parameter.) When max_age is used, the ID Token returned MUST include an
	// auth_time Claim Value.
	MaxAge *uint64 `protobuf:"varint,10,opt,name=max_age,json=maxAge,proto3,oneof" json:"max_age,omitempty"`
	// OPTIONAL. End-User's preferred languages and scripts for the user
	// interface, represented as a space-separated list of BCP47 [RFC5646]
	// language tag values, ordered by preference. For instance, the value "fr-CA
	// fr en" represents a preference for French as spoken in Canada, then French
	// (without a region designation), followed by English (without a region
	// designation). An error SHOULD NOT result if some or all of the requested
	// locales are not supported by the OpenID Provider.
	UiLocales *string `protobuf:"bytes,11,opt,name=ui_locales,json=uiLocales,proto3,oneof" json:"ui_locales,omitempty"`
	// OPTIONAL. ID Token previously issued by the Authorization Server being
	// passed as a hint about the End-User's current or past authenticated session
	// with the Client. If the End-User identified by the ID Token is logged in or
	// is logged in by the request, then the Authorization Server returns a
	// positive response; otherwise, it SHOULD return an error, such as
	// login_required. When possible, an id_token_hint SHOULD be present when
	// prompt=none is used and an invalid_request error MAY be returned if it is
	// not; however, the server SHOULD respond successfully when possible, even
	// if it is not present. The Authorization Server need not be listed as an
	// audience of the ID Token when it is used as an id_token_hint value.
	// If the ID Token received by the RP from the OP is encrypted, to use it as
	// an id_token_hint, the Client MUST decrypt the signed ID Token contained
	// within the encrypted ID Token. The Client MAY re-encrypt the signed ID
	// token to the Authentication Server using a key that enables the server to
	// decrypt the ID Token, and use the re-encrypted ID token as the
	// id_token_hint value.
	IdTokenHint *string `protobuf:"bytes,12,opt,name=id_token_hint,json=idTokenHint,proto3,oneof" json:"id_token_hint,omitempty"`
	// OPTIONAL. Requested Authentication Context Class Reference values.
	// Space-separated string that specifies the acr values that the Authorization
	// Server is being requested to use for processing this Authentication
	// Request, with the values appearing in order of preference. The
	// Authentication Context Class satisfied by the authentication performed is
	// returned as the acr Claim Value, as specified in Section 2. The acr Claim
	// is requested as a Voluntary Claim by this parameter.
	AcrValues *string `protobuf:"bytes,13,opt,name=acr_values,json=acrValues,proto3,oneof" json:"acr_values,omitempty"`
	// OPTIONAL. This parameter enables OpenID Connect requests to be passed in a
	// single, self-contained parameter and to be optionally signed and/or
	// encrypted. The parameter value is a Request Object value, as specified in
	// Section 6.1. It represents the request as a JWT whose Claims are the
	// request parameters.
	Request *string `protobuf:"bytes,14,opt,name=request,proto3,oneof" json:"request,omitempty"`
	// OPTIONAL. This parameter enables OpenID Connect requests to be passed by
	// reference, rather than by value. The request_uri value is a URL using the
	// https scheme referencing a resource containing a Request Object value,
	// which is a JWT containing the request parameters.
	RequestUri *string `protobuf:"bytes,15,opt,name=request_uri,json=requestUri,proto3,oneof" json:"request_uri,omitempty"`
	// REQUIRED. This parameter enables PKCE flow.
	CodeChallenge string `protobuf:"bytes,16,opt,name=code_challenge,json=codeChallenge,proto3" json:"code_challenge,omitempty"`
	// REQUIRED. This parameter enables PKCE flow.
	CodeChallengeMethod string `protobuf:"bytes,17,opt,name=code_challenge_method,json=codeChallengeMethod,proto3" json:"code_challenge_method,omitempty"`
	// REQUIRED. Add targeted audience.
	Audience string `protobuf:"bytes,18,opt,name=audience,proto3" json:"audience,omitempty"`
	// OPTIONAL.
	// https://tools.ietf.org/html/draft-fett-oauth-dpop-04#section-5
	DpopProof *string `protobuf:"bytes,19,opt,name=dpop_proof,json=dpopProof,proto3,oneof" json:"dpop_proof,omitempty"`
	// OPTIONAL
	// https://tools.ietf.org/html/rfc8707
	// Indicates the target service or resource to which access is being
	// requested.  Its value MUST be an absolute URI, as specified by
	// Section 4.3 of [RFC3986].  The URI MUST NOT include a fragment
	// component.  It SHOULD NOT include a query component, but it is
	// recognized that there are cases that make a query component a
	// useful and necessary part of the resource parameter, such as when
	// one or more query parameters are used to scope requests to an
	// application.  The "resource" parameter URI value is an identifier
	// representing the identity of the resource, which MAY be a locator
	// that corresponds to a network-addressable location where the
	// target resource is hosted.  Multiple "resource" parameters MAY be
	// used to indicate that the requested token is intended to be used
	// at multiple resources.
	Resource []string `protobuf:"bytes,20,rep,name=resource,proto3" json:"resource,omitempty"`
	// OPTIONAL.
	// Issuer url used for JARM decoding.
	Iss *string `protobuf:"bytes,21,opt,name=iss,proto3,oneof" json:"iss,omitempty"`
	// OPTIONAL. A token containing information identifying the end-user for whom
	// authentication is being requested. The particular details and security
	// requirements for the login_hint_token as well as how the end-user is
	// identified by its content are deployment or profile specific.
	LoginHintToken *string `protobuf:"bytes,22,opt,name=login_hint_token,json=loginHintToken,proto3,oneof" json:"login_hint_token,omitempty"`
	// OPTIONAL. A hint to the OpenID Provider regarding the end-user for whom
	// authentication is being requested. The value may contain an email address,
	// phone number, account number, subject identifier, username, etc., which
	// identifies the end-user to the OP. The value may be directly collected from
	// the user by the Client before requesting authentication at the OP, for
	// example, but may also be obtained by other means.
	LoginHint *string `protobuf:"bytes,23,opt,name=login_hint,json=loginHint,proto3,oneof" json:"login_hint,omitempty"`
	// contains filtered or unexported fields
}

An Authentication Request is an OAuth 2.0 Authorization Request that requests that the End-User be authenticated by the Authorization Server.

func (*AuthorizationRequest) Descriptor deprecated 

func (*AuthorizationRequest) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizationRequest.ProtoReflect.Descriptor instead.

func (*AuthorizationRequest) GetAcrValues 

func (x *AuthorizationRequest) GetAcrValues() string

func (*AuthorizationRequest) GetAudience 

func (x *AuthorizationRequest) GetAudience() string

func (*AuthorizationRequest) GetClientId 

func (x *AuthorizationRequest) GetClientId() string

func (*AuthorizationRequest) GetCodeChallenge 

func (x *AuthorizationRequest) GetCodeChallenge() string

func (*AuthorizationRequest) GetCodeChallengeMethod 

func (x *AuthorizationRequest) GetCodeChallengeMethod() string

func (*AuthorizationRequest) GetDisplay 

func (x *AuthorizationRequest) GetDisplay() string

func (*AuthorizationRequest) GetDpopProof 

func (x *AuthorizationRequest) GetDpopProof() string

func (*AuthorizationRequest) GetIdTokenHint 

func (x *AuthorizationRequest) GetIdTokenHint() string

func (*AuthorizationRequest) GetIss 

func (x *AuthorizationRequest) GetIss() string

func (*AuthorizationRequest) GetLoginHint 

func (x *AuthorizationRequest) GetLoginHint() string

func (*AuthorizationRequest) GetLoginHintToken 

func (x *AuthorizationRequest) GetLoginHintToken() string

func (*AuthorizationRequest) GetMaxAge 

func (x *AuthorizationRequest) GetMaxAge() uint64

func (*AuthorizationRequest) GetNonce 

func (x *AuthorizationRequest) GetNonce() string

func (*AuthorizationRequest) GetPrompt 

func (x *AuthorizationRequest) GetPrompt() string

func (*AuthorizationRequest) GetRedirectUri 

func (x *AuthorizationRequest) GetRedirectUri() string

func (*AuthorizationRequest) GetRequest 

func (x *AuthorizationRequest) GetRequest() string

func (*AuthorizationRequest) GetRequestUri 

func (x *AuthorizationRequest) GetRequestUri() string

func (*AuthorizationRequest) GetResource 

func (x *AuthorizationRequest) GetResource() []string

func (*AuthorizationRequest) GetResponseMode 

func (x *AuthorizationRequest) GetResponseMode() string

func (*AuthorizationRequest) GetResponseType 

func (x *AuthorizationRequest) GetResponseType() string

func (*AuthorizationRequest) GetScope 

func (x *AuthorizationRequest) GetScope() string

func (*AuthorizationRequest) GetState 

func (x *AuthorizationRequest) GetState() string

func (*AuthorizationRequest) GetUiLocales 

func (x *AuthorizationRequest) GetUiLocales() string

func (*AuthorizationRequest) MarshalJSON 

func (msg *AuthorizationRequest) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*AuthorizationRequest) MarshalToSizedBufferVT 

func (m *AuthorizationRequest) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*AuthorizationRequest) MarshalToVT 

func (m *AuthorizationRequest) MarshalToVT(dAtA []byte) (int, error)

func (*AuthorizationRequest) MarshalVT 

func (m *AuthorizationRequest) MarshalVT() (dAtA []byte, err error)

func (*AuthorizationRequest) ProtoMessage 

func (*AuthorizationRequest) ProtoMessage()

func (*AuthorizationRequest) ProtoReflect 

func (x *AuthorizationRequest) ProtoReflect() protoreflect.Message

func (*AuthorizationRequest) Reset 

func (x *AuthorizationRequest) Reset()

func (*AuthorizationRequest) SizeVT 

func (m *AuthorizationRequest) SizeVT() (n int)

func (*AuthorizationRequest) String 

func (x *AuthorizationRequest) String() string

func (*AuthorizationRequest) UnmarshalJSON 

func (msg *AuthorizationRequest) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*AuthorizationRequest) UnmarshalVT 

func (m *AuthorizationRequest) UnmarshalVT(dAtA []byte) error

type AuthorizationServiceClient 

type AuthorizationServiceClient interface {
	Authorize(ctx context.Context, in *AuthorizeRequest, opts ...grpc.CallOption) (*AuthorizeResponse, error)
	Token(ctx context.Context, in *TokenRequest, opts ...grpc.CallOption) (*TokenResponse, error)
}

AuthorizationServiceClient is the client API for AuthorizationService service.

For semantics around ctx use and closing/ending streaming RPCs, please refer to https://pkg.go.dev/google.golang.org/grpc/?tab=doc#ClientConn.NewStream.

func NewAuthorizationServiceClient 

func NewAuthorizationServiceClient(cc grpc.ClientConnInterface) AuthorizationServiceClient

type AuthorizationServiceServer 

type AuthorizationServiceServer interface {
	Authorize(context.Context, *AuthorizeRequest) (*AuthorizeResponse, error)
	Token(context.Context, *TokenRequest) (*TokenResponse, error)
}

AuthorizationServiceServer is the server API for AuthorizationService service. All implementations should embed UnimplementedAuthorizationServiceServer for forward compatibility

type AuthorizeRequest 

type AuthorizeRequest struct {

	// REQUIRED. Issuer uri.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// REQUIRED. Client that requests the authorization requests registration.
	Client *v1.Client `protobuf:"bytes,2,opt,name=client,proto3" json:"client,omitempty"`
	// REQUIRED. User identity.
	Subject string `protobuf:"bytes,3,opt,name=subject,proto3" json:"subject,omitempty"`
	// REQUIRED. Authorization request object.
	Request *AuthorizationRequest `protobuf:"bytes,4,opt,name=request,proto3" json:"request,omitempty"`
	// contains filtered or unexported fields
}

func (*AuthorizeRequest) Descriptor deprecated 

func (*AuthorizeRequest) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizeRequest.ProtoReflect.Descriptor instead.

func (*AuthorizeRequest) GetClient 

func (x *AuthorizeRequest) GetClient() *v1.Client

func (*AuthorizeRequest) GetIssuer 

func (x *AuthorizeRequest) GetIssuer() string

func (*AuthorizeRequest) GetRequest 

func (x *AuthorizeRequest) GetRequest() *AuthorizationRequest

func (*AuthorizeRequest) GetSubject 

func (x *AuthorizeRequest) GetSubject() string

func (*AuthorizeRequest) MarshalJSON 

func (msg *AuthorizeRequest) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*AuthorizeRequest) MarshalToSizedBufferVT 

func (m *AuthorizeRequest) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*AuthorizeRequest) MarshalToVT 

func (m *AuthorizeRequest) MarshalToVT(dAtA []byte) (int, error)

func (*AuthorizeRequest) MarshalVT 

func (m *AuthorizeRequest) MarshalVT() (dAtA []byte, err error)

func (*AuthorizeRequest) ProtoMessage 

func (*AuthorizeRequest) ProtoMessage()

func (*AuthorizeRequest) ProtoReflect 

func (x *AuthorizeRequest) ProtoReflect() protoreflect.Message

func (*AuthorizeRequest) Reset 

func (x *AuthorizeRequest) Reset()

func (*AuthorizeRequest) SizeVT 

func (m *AuthorizeRequest) SizeVT() (n int)

func (*AuthorizeRequest) String 

func (x *AuthorizeRequest) String() string

func (*AuthorizeRequest) UnmarshalJSON 

func (msg *AuthorizeRequest) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*AuthorizeRequest) UnmarshalVT 

func (m *AuthorizeRequest) UnmarshalVT(dAtA []byte) error

type AuthorizeResponse 

type AuthorizeResponse struct {
	Error *v11.Error `protobuf:"bytes,1,opt,name=error,proto3" json:"error,omitempty"`
	// REQUIRED.  The authorization code generated by the
	// authorization server.  The authorization code MUST expire
	// shortly after it is issued to mitigate the risk of leaks.  A
	// maximum authorization code lifetime of 10 minutes is
	// RECOMMENDED.  The client MUST NOT use the authorization code
	// more than once.  If an authorization code is used more than
	// once, the authorization server MUST deny the request and SHOULD
	// revoke (when possible) all tokens previously issued based on
	// that authorization code.  The authorization code is bound to
	// the client identifier and redirection URI.
	Code string `protobuf:"bytes,2,opt,name=code,proto3" json:"code,omitempty"`
	// REQUIRED if the "state" parameter was present in the client
	// authorization request.  The exact value received from the
	// client.
	State string `protobuf:"bytes,3,opt,name=state,proto3" json:"state,omitempty"`
	// REQUIRED. Assembled redirection uri to application.
	RedirectUri string `protobuf:"bytes,4,opt,name=redirect_uri,json=redirectUri,proto3" json:"redirect_uri,omitempty"`
	// REQUIRED. the client_id of the client the response is intended for.
	ClientId string `protobuf:"bytes,5,opt,name=client_id,json=clientId,proto3" json:"client_id,omitempty"`
	// A JSON number that represents the lifetime of the
	// authorization code in seconds.  The authorization code lifetime is at the
	// discretion of the AS.
	ExpiresIn uint64 `protobuf:"fixed64,6,opt,name=expires_in,json=expiresIn,proto3" json:"expires_in,omitempty"`
	// REQUIRED
	// https://datatracker.ietf.org/doc/draft-meyerzuselhausen-oauth-iss-auth-resp/
	//
	// The "iss" parameter value is the issuer identifier of the
	// authorization server which created the authorization response, as
	// defined in [RFC8414].  Its value MUST be a URL that uses the "https"
	// scheme without any query or fragment components.  If the
	// authorization server provides metadata as defined in [RFC8414], the
	// value of the parameter "iss" MUST be identical to the authorization
	// server metadata value "issuer".
	Issuer string `protobuf:"bytes,7,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// REQUIRED. The authorization request request response mode.
	ResponseMode string `protobuf:"bytes,8,opt,name=response_mode,json=responseMode,proto3" json:"response_mode,omitempty"`
	// contains filtered or unexported fields
}

https://www.rfc-editor.org/rfc/rfc6749.html#section-4.1.2

func (*AuthorizeResponse) Descriptor deprecated 

func (*AuthorizeResponse) Descriptor() ([]byte, []int)

Deprecated: Use AuthorizeResponse.ProtoReflect.Descriptor instead.

func (*AuthorizeResponse) GetClientId 

func (x *AuthorizeResponse) GetClientId() string

func (*AuthorizeResponse) GetCode 

func (x *AuthorizeResponse) GetCode() string

func (*AuthorizeResponse) GetError 

func (x *AuthorizeResponse) GetError() *v11.Error

func (*AuthorizeResponse) GetExpiresIn 

func (x *AuthorizeResponse) GetExpiresIn() uint64

func (*AuthorizeResponse) GetIssuer 

func (x *AuthorizeResponse) GetIssuer() string

func (*AuthorizeResponse) GetRedirectUri 

func (x *AuthorizeResponse) GetRedirectUri() string

func (*AuthorizeResponse) GetResponseMode 

func (x *AuthorizeResponse) GetResponseMode() string

func (*AuthorizeResponse) GetState 

func (x *AuthorizeResponse) GetState() string

func (*AuthorizeResponse) MarshalJSON 

func (msg *AuthorizeResponse) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*AuthorizeResponse) MarshalToSizedBufferVT 

func (m *AuthorizeResponse) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*AuthorizeResponse) MarshalToVT 

func (m *AuthorizeResponse) MarshalToVT(dAtA []byte) (int, error)

func (*AuthorizeResponse) MarshalVT 

func (m *AuthorizeResponse) MarshalVT() (dAtA []byte, err error)

func (*AuthorizeResponse) ProtoMessage 

func (*AuthorizeResponse) ProtoMessage()

func (*AuthorizeResponse) ProtoReflect 

func (x *AuthorizeResponse) ProtoReflect() protoreflect.Message

func (*AuthorizeResponse) Reset 

func (x *AuthorizeResponse) Reset()

func (*AuthorizeResponse) SizeVT 

func (m *AuthorizeResponse) SizeVT() (n int)

func (*AuthorizeResponse) String 

func (x *AuthorizeResponse) String() string

func (*AuthorizeResponse) UnmarshalJSON 

func (msg *AuthorizeResponse) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*AuthorizeResponse) UnmarshalVT 

func (m *AuthorizeResponse) UnmarshalVT(dAtA []byte) error

type DeviceAuthorizationRequest 

type DeviceAuthorizationRequest struct {

	// REQUIRED. Issuer uri.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// REQUIRED if the client is not authenticating with the
	// authorization server as described in Section 3.2.1. of [RFC6749].
	// The client identifier as described in Section 2.2 of [RFC6749].
	ClientId string `protobuf:"bytes,2,opt,name=client_id,json=clientId,proto3" json:"client_id,omitempty"`
	// OPTIONAL.  The scope of the access request as defined by
	// Section 3.3 of [RFC6749].
	Scope *string `protobuf:"bytes,3,opt,name=scope,proto3,oneof" json:"scope,omitempty"`
	// OPTIONAL.  The target audience.
	Audience *string `protobuf:"bytes,4,opt,name=audience,proto3,oneof" json:"audience,omitempty"`
	// contains filtered or unexported fields
}

https://tools.ietf.org/html/rfc8628#section-3.1

func (*DeviceAuthorizationRequest) Descriptor deprecated 

func (*DeviceAuthorizationRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeviceAuthorizationRequest.ProtoReflect.Descriptor instead.

func (*DeviceAuthorizationRequest) GetAudience 

func (x *DeviceAuthorizationRequest) GetAudience() string

func (*DeviceAuthorizationRequest) GetClientId 

func (x *DeviceAuthorizationRequest) GetClientId() string

func (*DeviceAuthorizationRequest) GetIssuer 

func (x *DeviceAuthorizationRequest) GetIssuer() string

func (*DeviceAuthorizationRequest) GetScope 

func (x *DeviceAuthorizationRequest) GetScope() string

func (*DeviceAuthorizationRequest) MarshalJSON 

func (msg *DeviceAuthorizationRequest) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*DeviceAuthorizationRequest) MarshalToSizedBufferVT 

func (m *DeviceAuthorizationRequest) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*DeviceAuthorizationRequest) MarshalToVT 

func (m *DeviceAuthorizationRequest) MarshalToVT(dAtA []byte) (int, error)

func (*DeviceAuthorizationRequest) MarshalVT 

func (m *DeviceAuthorizationRequest) MarshalVT() (dAtA []byte, err error)

func (*DeviceAuthorizationRequest) ProtoMessage 

func (*DeviceAuthorizationRequest) ProtoMessage()

func (*DeviceAuthorizationRequest) ProtoReflect 

func (x *DeviceAuthorizationRequest) ProtoReflect() protoreflect.Message

func (*DeviceAuthorizationRequest) Reset 

func (x *DeviceAuthorizationRequest) Reset()

func (*DeviceAuthorizationRequest) SizeVT 

func (m *DeviceAuthorizationRequest) SizeVT() (n int)

func (*DeviceAuthorizationRequest) String 

func (x *DeviceAuthorizationRequest) String() string

func (*DeviceAuthorizationRequest) UnmarshalJSON 

func (msg *DeviceAuthorizationRequest) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*DeviceAuthorizationRequest) UnmarshalVT 

func (m *DeviceAuthorizationRequest) UnmarshalVT(dAtA []byte) error

type DeviceAuthorizationResponse 

type DeviceAuthorizationResponse struct {
	Error *v11.Error `protobuf:"bytes,1,opt,name=error,proto3" json:"error,omitempty"`
	// REQUIRED.  The device verification code.
	DeviceCode string `protobuf:"bytes,2,opt,name=device_code,json=deviceCode,proto3" json:"device_code,omitempty"`
	// REQUIRED.  The end-user verification code.
	UserCode string `protobuf:"bytes,3,opt,name=user_code,json=userCode,proto3" json:"user_code,omitempty"`
	// REQUIRED.  The end-user verification URI on the authorization
	// server.  The URI should be short and easy to remember as end users
	// will be asked to manually type it into their user agent.
	VerificationUri string `protobuf:"bytes,4,opt,name=verification_uri,json=verificationUri,proto3" json:"verification_uri,omitempty"`
	// OPTIONAL.  A verification URI that includes the "user_code" (or
	// other information with the same function as the "user_code"),
	// which is designed for non-textual transmission.
	VerificationUriComplete *string `` /* 138-byte string literal not displayed */
	// REQUIRED.  The lifetime in seconds of the "device_code" and
	// "user_code".
	ExpiresIn uint64 `protobuf:"fixed64,6,opt,name=expires_in,json=expiresIn,proto3" json:"expires_in,omitempty"`
	// OPTIONAL.  The minimum amount of time in seconds that the client
	// SHOULD wait between polling requests to the token endpoint.  If no
	// value is provided, clients MUST use 5 as the default.
	Interval uint64 `protobuf:"fixed64,7,opt,name=interval,proto3" json:"interval,omitempty"`
	// REQUIRED. Issuer url.
	Issuer string `protobuf:"bytes,8,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// contains filtered or unexported fields
}

https://tools.ietf.org/html/rfc8628#section-3.2

func (*DeviceAuthorizationResponse) Descriptor deprecated 

func (*DeviceAuthorizationResponse) Descriptor() ([]byte, []int)

Deprecated: Use DeviceAuthorizationResponse.ProtoReflect.Descriptor instead.

func (*DeviceAuthorizationResponse) GetDeviceCode 

func (x *DeviceAuthorizationResponse) GetDeviceCode() string

func (*DeviceAuthorizationResponse) GetError 

func (x *DeviceAuthorizationResponse) GetError() *v11.Error

func (*DeviceAuthorizationResponse) GetExpiresIn 

func (x *DeviceAuthorizationResponse) GetExpiresIn() uint64

func (*DeviceAuthorizationResponse) GetInterval 

func (x *DeviceAuthorizationResponse) GetInterval() uint64

func (*DeviceAuthorizationResponse) GetIssuer 

func (x *DeviceAuthorizationResponse) GetIssuer() string

func (*DeviceAuthorizationResponse) GetUserCode 

func (x *DeviceAuthorizationResponse) GetUserCode() string

func (*DeviceAuthorizationResponse) GetVerificationUri 

func (x *DeviceAuthorizationResponse) GetVerificationUri() string

func (*DeviceAuthorizationResponse) GetVerificationUriComplete 

func (x *DeviceAuthorizationResponse) GetVerificationUriComplete() string

func (*DeviceAuthorizationResponse) MarshalJSON 

func (msg *DeviceAuthorizationResponse) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*DeviceAuthorizationResponse) MarshalToSizedBufferVT 

func (m *DeviceAuthorizationResponse) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*DeviceAuthorizationResponse) MarshalToVT 

func (m *DeviceAuthorizationResponse) MarshalToVT(dAtA []byte) (int, error)

func (*DeviceAuthorizationResponse) MarshalVT 

func (m *DeviceAuthorizationResponse) MarshalVT() (dAtA []byte, err error)

func (*DeviceAuthorizationResponse) ProtoMessage 

func (*DeviceAuthorizationResponse) ProtoMessage()

func (*DeviceAuthorizationResponse) ProtoReflect 

func (x *DeviceAuthorizationResponse) ProtoReflect() protoreflect.Message

func (*DeviceAuthorizationResponse) Reset 

func (x *DeviceAuthorizationResponse) Reset()

func (*DeviceAuthorizationResponse) SizeVT 

func (m *DeviceAuthorizationResponse) SizeVT() (n int)

func (*DeviceAuthorizationResponse) String 

func (x *DeviceAuthorizationResponse) String() string

func (*DeviceAuthorizationResponse) UnmarshalJSON 

func (msg *DeviceAuthorizationResponse) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*DeviceAuthorizationResponse) UnmarshalVT 

func (m *DeviceAuthorizationResponse) UnmarshalVT(dAtA []byte) error

type DeviceCodeValidationRequest 

type DeviceCodeValidationRequest struct {

	// REQUIRED. Issuer uri.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// REQUIRED. The end-user verification code.
	UserCode string `protobuf:"bytes,2,opt,name=user_code,json=userCode,proto3" json:"user_code,omitempty"`
	// REQUIRED. User identity.
	Subject string `protobuf:"bytes,3,opt,name=subject,proto3" json:"subject,omitempty"`
	// contains filtered or unexported fields
}

func (*DeviceCodeValidationRequest) Descriptor deprecated 

func (*DeviceCodeValidationRequest) Descriptor() ([]byte, []int)

Deprecated: Use DeviceCodeValidationRequest.ProtoReflect.Descriptor instead.

func (*DeviceCodeValidationRequest) GetIssuer 

func (x *DeviceCodeValidationRequest) GetIssuer() string

func (*DeviceCodeValidationRequest) GetSubject 

func (x *DeviceCodeValidationRequest) GetSubject() string

func (*DeviceCodeValidationRequest) GetUserCode 

func (x *DeviceCodeValidationRequest) GetUserCode() string

func (*DeviceCodeValidationRequest) MarshalJSON 

func (msg *DeviceCodeValidationRequest) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*DeviceCodeValidationRequest) MarshalToSizedBufferVT 

func (m *DeviceCodeValidationRequest) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*DeviceCodeValidationRequest) MarshalToVT 

func (m *DeviceCodeValidationRequest) MarshalToVT(dAtA []byte) (int, error)

func (*DeviceCodeValidationRequest) MarshalVT 

func (m *DeviceCodeValidationRequest) MarshalVT() (dAtA []byte, err error)

func (*DeviceCodeValidationRequest) ProtoMessage 

func (*DeviceCodeValidationRequest) ProtoMessage()

func (*DeviceCodeValidationRequest) ProtoReflect 

func (x *DeviceCodeValidationRequest) ProtoReflect() protoreflect.Message

func (*DeviceCodeValidationRequest) Reset 

func (x *DeviceCodeValidationRequest) Reset()

func (*DeviceCodeValidationRequest) SizeVT 

func (m *DeviceCodeValidationRequest) SizeVT() (n int)

func (*DeviceCodeValidationRequest) String 

func (x *DeviceCodeValidationRequest) String() string

func (*DeviceCodeValidationRequest) UnmarshalJSON 

func (msg *DeviceCodeValidationRequest) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*DeviceCodeValidationRequest) UnmarshalVT 

func (m *DeviceCodeValidationRequest) UnmarshalVT(dAtA []byte) error

type DeviceCodeValidationResponse 

type DeviceCodeValidationResponse struct {
	Error *v11.Error `protobuf:"bytes,1,opt,name=error,proto3" json:"error,omitempty"`
	// contains filtered or unexported fields
}

func (*DeviceCodeValidationResponse) Descriptor deprecated 

func (*DeviceCodeValidationResponse) Descriptor() ([]byte, []int)

Deprecated: Use DeviceCodeValidationResponse.ProtoReflect.Descriptor instead.

func (*DeviceCodeValidationResponse) GetError 

func (x *DeviceCodeValidationResponse) GetError() *v11.Error

func (*DeviceCodeValidationResponse) MarshalJSON 

func (msg *DeviceCodeValidationResponse) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*DeviceCodeValidationResponse) MarshalToSizedBufferVT 

func (m *DeviceCodeValidationResponse) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*DeviceCodeValidationResponse) MarshalToVT 

func (m *DeviceCodeValidationResponse) MarshalToVT(dAtA []byte) (int, error)

func (*DeviceCodeValidationResponse) MarshalVT 

func (m *DeviceCodeValidationResponse) MarshalVT() (dAtA []byte, err error)

func (*DeviceCodeValidationResponse) ProtoMessage 

func (*DeviceCodeValidationResponse) ProtoMessage()

func (*DeviceCodeValidationResponse) ProtoReflect 

func (x *DeviceCodeValidationResponse) ProtoReflect() protoreflect.Message

func (*DeviceCodeValidationResponse) Reset 

func (x *DeviceCodeValidationResponse) Reset()

func (*DeviceCodeValidationResponse) SizeVT 

func (m *DeviceCodeValidationResponse) SizeVT() (n int)

func (*DeviceCodeValidationResponse) String 

func (x *DeviceCodeValidationResponse) String() string

func (*DeviceCodeValidationResponse) UnmarshalJSON 

func (msg *DeviceCodeValidationResponse) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*DeviceCodeValidationResponse) UnmarshalVT 

func (m *DeviceCodeValidationResponse) UnmarshalVT(dAtA []byte) error

type GrantAuthorizationCode 

type GrantAuthorizationCode struct {
	Code         string `protobuf:"bytes,1,opt,name=code,proto3" json:"code,omitempty"`
	RedirectUri  string `protobuf:"bytes,2,opt,name=redirect_uri,json=redirectUri,proto3" json:"redirect_uri,omitempty"`
	CodeVerifier string `protobuf:"bytes,3,opt,name=code_verifier,json=codeVerifier,proto3" json:"code_verifier,omitempty"`
	// OPTIONAL. Authorization Code Binding to DPoP Key.
	// https://datatracker.ietf.org/doc/html/draft-ietf-oauth-dpop-09#section-10
	DpopJkt *string `protobuf:"bytes,4,opt,name=dpop_jkt,json=dpopJkt,proto3,oneof" json:"dpop_jkt,omitempty"`
	// contains filtered or unexported fields
}

func (*GrantAuthorizationCode) Descriptor deprecated 

func (*GrantAuthorizationCode) Descriptor() ([]byte, []int)

Deprecated: Use GrantAuthorizationCode.ProtoReflect.Descriptor instead.

func (*GrantAuthorizationCode) GetCode 

func (x *GrantAuthorizationCode) GetCode() string

func (*GrantAuthorizationCode) GetCodeVerifier 

func (x *GrantAuthorizationCode) GetCodeVerifier() string

func (*GrantAuthorizationCode) GetDpopJkt 

func (x *GrantAuthorizationCode) GetDpopJkt() string

func (*GrantAuthorizationCode) GetRedirectUri 

func (x *GrantAuthorizationCode) GetRedirectUri() string

func (*GrantAuthorizationCode) MarshalJSON 

func (msg *GrantAuthorizationCode) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*GrantAuthorizationCode) MarshalToSizedBufferVT 

func (m *GrantAuthorizationCode) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*GrantAuthorizationCode) MarshalToVT 

func (m *GrantAuthorizationCode) MarshalToVT(dAtA []byte) (int, error)

func (*GrantAuthorizationCode) MarshalVT 

func (m *GrantAuthorizationCode) MarshalVT() (dAtA []byte, err error)

func (*GrantAuthorizationCode) ProtoMessage 

func (*GrantAuthorizationCode) ProtoMessage()

func (*GrantAuthorizationCode) ProtoReflect 

func (x *GrantAuthorizationCode) ProtoReflect() protoreflect.Message

func (*GrantAuthorizationCode) Reset 

func (x *GrantAuthorizationCode) Reset()

func (*GrantAuthorizationCode) SizeVT 

func (m *GrantAuthorizationCode) SizeVT() (n int)

func (*GrantAuthorizationCode) String 

func (x *GrantAuthorizationCode) String() string

func (*GrantAuthorizationCode) UnmarshalJSON 

func (msg *GrantAuthorizationCode) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*GrantAuthorizationCode) UnmarshalVT 

func (m *GrantAuthorizationCode) UnmarshalVT(dAtA []byte) error

type GrantClientCredentials 

type GrantClientCredentials struct {
	// contains filtered or unexported fields
}

func (*GrantClientCredentials) Descriptor deprecated 

func (*GrantClientCredentials) Descriptor() ([]byte, []int)

Deprecated: Use GrantClientCredentials.ProtoReflect.Descriptor instead.

func (*GrantClientCredentials) MarshalJSON 

func (msg *GrantClientCredentials) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*GrantClientCredentials) MarshalToSizedBufferVT 

func (m *GrantClientCredentials) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*GrantClientCredentials) MarshalToVT 

func (m *GrantClientCredentials) MarshalToVT(dAtA []byte) (int, error)

func (*GrantClientCredentials) MarshalVT 

func (m *GrantClientCredentials) MarshalVT() (dAtA []byte, err error)

func (*GrantClientCredentials) ProtoMessage 

func (*GrantClientCredentials) ProtoMessage()

func (*GrantClientCredentials) ProtoReflect 

func (x *GrantClientCredentials) ProtoReflect() protoreflect.Message

func (*GrantClientCredentials) Reset 

func (x *GrantClientCredentials) Reset()

func (*GrantClientCredentials) SizeVT 

func (m *GrantClientCredentials) SizeVT() (n int)

func (*GrantClientCredentials) String 

func (x *GrantClientCredentials) String() string

func (*GrantClientCredentials) UnmarshalJSON 

func (msg *GrantClientCredentials) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*GrantClientCredentials) UnmarshalVT 

func (m *GrantClientCredentials) UnmarshalVT(dAtA []byte) error

type GrantDeviceCode 

type GrantDeviceCode struct {

	// REQUIRED.  The device verification code, "device_code" from the
	// device authorization response, defined in Section 3.2.
	DeviceCode string `protobuf:"bytes,1,opt,name=device_code,json=deviceCode,proto3" json:"device_code,omitempty"`
	// REQUIRED if the client is not authenticating with the
	// authorization server as described in Section 3.2.1. of [RFC6749].
	// The client identifier as described in Section 2.2 of [RFC6749].
	ClientId string `protobuf:"bytes,2,opt,name=client_id,json=clientId,proto3" json:"client_id,omitempty"`
	// contains filtered or unexported fields
}

https://tools.ietf.org/html/rfc8628#section-3.4

func (*GrantDeviceCode) Descriptor deprecated 

func (*GrantDeviceCode) Descriptor() ([]byte, []int)

Deprecated: Use GrantDeviceCode.ProtoReflect.Descriptor instead.

func (*GrantDeviceCode) GetClientId 

func (x *GrantDeviceCode) GetClientId() string

func (*GrantDeviceCode) GetDeviceCode 

func (x *GrantDeviceCode) GetDeviceCode() string

func (*GrantDeviceCode) MarshalJSON 

func (msg *GrantDeviceCode) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*GrantDeviceCode) MarshalToSizedBufferVT 

func (m *GrantDeviceCode) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*GrantDeviceCode) MarshalToVT 

func (m *GrantDeviceCode) MarshalToVT(dAtA []byte) (int, error)

func (*GrantDeviceCode) MarshalVT 

func (m *GrantDeviceCode) MarshalVT() (dAtA []byte, err error)

func (*GrantDeviceCode) ProtoMessage 

func (*GrantDeviceCode) ProtoMessage()

func (*GrantDeviceCode) ProtoReflect 

func (x *GrantDeviceCode) ProtoReflect() protoreflect.Message

func (*GrantDeviceCode) Reset 

func (x *GrantDeviceCode) Reset()

func (*GrantDeviceCode) SizeVT 

func (m *GrantDeviceCode) SizeVT() (n int)

func (*GrantDeviceCode) String 

func (x *GrantDeviceCode) String() string

func (*GrantDeviceCode) UnmarshalJSON 

func (msg *GrantDeviceCode) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*GrantDeviceCode) UnmarshalVT 

func (m *GrantDeviceCode) UnmarshalVT(dAtA []byte) error

type GrantRefreshToken 

type GrantRefreshToken struct {
	RefreshToken string `protobuf:"bytes,1,opt,name=refresh_token,json=refreshToken,proto3" json:"refresh_token,omitempty"`
	// contains filtered or unexported fields
}

func (*GrantRefreshToken) Descriptor deprecated 

func (*GrantRefreshToken) Descriptor() ([]byte, []int)

Deprecated: Use GrantRefreshToken.ProtoReflect.Descriptor instead.

func (*GrantRefreshToken) GetRefreshToken 

func (x *GrantRefreshToken) GetRefreshToken() string

func (*GrantRefreshToken) MarshalJSON 

func (msg *GrantRefreshToken) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*GrantRefreshToken) MarshalToSizedBufferVT 

func (m *GrantRefreshToken) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*GrantRefreshToken) MarshalToVT 

func (m *GrantRefreshToken) MarshalToVT(dAtA []byte) (int, error)

func (*GrantRefreshToken) MarshalVT 

func (m *GrantRefreshToken) MarshalVT() (dAtA []byte, err error)

func (*GrantRefreshToken) ProtoMessage 

func (*GrantRefreshToken) ProtoMessage()

func (*GrantRefreshToken) ProtoReflect 

func (x *GrantRefreshToken) ProtoReflect() protoreflect.Message

func (*GrantRefreshToken) Reset 

func (x *GrantRefreshToken) Reset()

func (*GrantRefreshToken) SizeVT 

func (m *GrantRefreshToken) SizeVT() (n int)

func (*GrantRefreshToken) String 

func (x *GrantRefreshToken) String() string

func (*GrantRefreshToken) UnmarshalJSON 

func (msg *GrantRefreshToken) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*GrantRefreshToken) UnmarshalVT 

func (m *GrantRefreshToken) UnmarshalVT(dAtA []byte) error

type GrantTokenExchange 

type GrantTokenExchange struct {

	// OPTIONAL.  An identifier, as described in Section 3, for the type
	// of the requested security token.  If the requested type is
	// unspecified, the issued token type is at the discretion of the
	// authorization server and may be dictated by knowledge of the
	// requirements of the service or resource indicated by the
	// "resource" or "audience" parameter.
	RequestedTokenType *string `protobuf:"bytes,1,opt,name=requested_token_type,json=requestedTokenType,proto3,oneof" json:"requested_token_type,omitempty"`
	// REQUIRED.  A security token that represents the identity of the
	// party on behalf of whom the request is being made.  Typically, the
	// subject of this token will be the subject of the security token
	// issued in response to the request.
	SubjectToken string `protobuf:"bytes,2,opt,name=subject_token,json=subjectToken,proto3" json:"subject_token,omitempty"`
	// REQUIRED.  An identifier, as described in Section 3, that
	// indicates the type of the security token in the "subject_token"
	// parameter.
	SubjectTokenType string `protobuf:"bytes,3,opt,name=subject_token_type,json=subjectTokenType,proto3" json:"subject_token_type,omitempty"`
	// OPTIONAL.  A security token that represents the identity of the
	// acting party.  Typically, this will be the party that is
	// authorized to use the requested security token and act on behalf
	// of the subject.
	ActorToken *string `protobuf:"bytes,4,opt,name=actor_token,json=actorToken,proto3,oneof" json:"actor_token,omitempty"`
	// An identifier, as described in Section 3, that indicates the type
	// of the security token in the "actor_token" parameter.  This is
	// REQUIRED when the "actor_token" parameter is present in the
	// request but MUST NOT be included otherwise.
	ActorTokenType *string `protobuf:"bytes,5,opt,name=actor_token_type,json=actorTokenType,proto3,oneof" json:"actor_token_type,omitempty"`
	// contains filtered or unexported fields
}

https://tools.ietf.org/html/rfc8693#section-2.1

func (*GrantTokenExchange) Descriptor deprecated 

func (*GrantTokenExchange) Descriptor() ([]byte, []int)

Deprecated: Use GrantTokenExchange.ProtoReflect.Descriptor instead.

func (*GrantTokenExchange) GetActorToken 

func (x *GrantTokenExchange) GetActorToken() string

func (*GrantTokenExchange) GetActorTokenType 

func (x *GrantTokenExchange) GetActorTokenType() string

func (*GrantTokenExchange) GetRequestedTokenType 

func (x *GrantTokenExchange) GetRequestedTokenType() string

func (*GrantTokenExchange) GetSubjectToken 

func (x *GrantTokenExchange) GetSubjectToken() string

func (*GrantTokenExchange) GetSubjectTokenType 

func (x *GrantTokenExchange) GetSubjectTokenType() string

func (*GrantTokenExchange) MarshalJSON 

func (msg *GrantTokenExchange) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*GrantTokenExchange) MarshalToSizedBufferVT 

func (m *GrantTokenExchange) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*GrantTokenExchange) MarshalToVT 

func (m *GrantTokenExchange) MarshalToVT(dAtA []byte) (int, error)

func (*GrantTokenExchange) MarshalVT 

func (m *GrantTokenExchange) MarshalVT() (dAtA []byte, err error)

func (*GrantTokenExchange) ProtoMessage 

func (*GrantTokenExchange) ProtoMessage()

func (*GrantTokenExchange) ProtoReflect 

func (x *GrantTokenExchange) ProtoReflect() protoreflect.Message

func (*GrantTokenExchange) Reset 

func (x *GrantTokenExchange) Reset()

func (*GrantTokenExchange) SizeVT 

func (m *GrantTokenExchange) SizeVT() (n int)

func (*GrantTokenExchange) String 

func (x *GrantTokenExchange) String() string

func (*GrantTokenExchange) UnmarshalJSON 

func (msg *GrantTokenExchange) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*GrantTokenExchange) UnmarshalVT 

func (m *GrantTokenExchange) UnmarshalVT(dAtA []byte) error

type RegistrationRequest 

type RegistrationRequest struct {

	// REQUIRED. Issuer uri.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// REQUIRED. Client that requests the authorization requests registration.
	Client *v1.Client `protobuf:"bytes,2,opt,name=client,proto3" json:"client,omitempty"`
	// REQUIRED. The request to register.
	Request *AuthorizationRequest `protobuf:"bytes,3,opt,name=request,proto3" json:"request,omitempty"`
	// OPTIONAL. DPoP Proof confirmation.
	Confirmation *v12.TokenConfirmation `protobuf:"bytes,4,opt,name=confirmation,proto3,oneof" json:"confirmation,omitempty"`
	// contains filtered or unexported fields
}

func (*RegistrationRequest) Descriptor deprecated 

func (*RegistrationRequest) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationRequest.ProtoReflect.Descriptor instead.

func (*RegistrationRequest) GetClient 

func (x *RegistrationRequest) GetClient() *v1.Client

func (*RegistrationRequest) GetConfirmation 

func (x *RegistrationRequest) GetConfirmation() *v12.TokenConfirmation

func (*RegistrationRequest) GetIssuer 

func (x *RegistrationRequest) GetIssuer() string

func (*RegistrationRequest) GetRequest 

func (x *RegistrationRequest) GetRequest() *AuthorizationRequest

func (*RegistrationRequest) MarshalJSON 

func (msg *RegistrationRequest) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*RegistrationRequest) MarshalToSizedBufferVT 

func (m *RegistrationRequest) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*RegistrationRequest) MarshalToVT 

func (m *RegistrationRequest) MarshalToVT(dAtA []byte) (int, error)

func (*RegistrationRequest) MarshalVT 

func (m *RegistrationRequest) MarshalVT() (dAtA []byte, err error)

func (*RegistrationRequest) ProtoMessage 

func (*RegistrationRequest) ProtoMessage()

func (*RegistrationRequest) ProtoReflect 

func (x *RegistrationRequest) ProtoReflect() protoreflect.Message

func (*RegistrationRequest) Reset 

func (x *RegistrationRequest) Reset()

func (*RegistrationRequest) SizeVT 

func (m *RegistrationRequest) SizeVT() (n int)

func (*RegistrationRequest) String 

func (x *RegistrationRequest) String() string

func (*RegistrationRequest) UnmarshalJSON 

func (msg *RegistrationRequest) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*RegistrationRequest) UnmarshalVT 

func (m *RegistrationRequest) UnmarshalVT(dAtA []byte) error

type RegistrationResponse 

type RegistrationResponse struct {
	Error *v11.Error `protobuf:"bytes,1,opt,name=error,proto3" json:"error,omitempty"` // https://tools.ietf.org/html/draft-lodderstedt-oauth-par-01#section-2.2
	// The request URI corresponding to the authorization
	// request posted.  This URI is used as reference to the respective
	// request data in the subsequent authorization request only.  The
	// way the authorization process obtains the authorization request
	// data is at the discretion of the authorization server and out of
	// scope of this specification.  There is no need to make the
	// authorization request data available to other parties via this
	// URI.
	RequestUri string `protobuf:"bytes,2,opt,name=request_uri,json=requestUri,proto3" json:"request_uri,omitempty"`
	// A JSON number that represents the lifetime of the
	// request URI in seconds.  The request URI lifetime is at the
	// discretion of the AS.
	ExpiresIn uint64 `protobuf:"fixed64,3,opt,name=expires_in,json=expiresIn,proto3" json:"expires_in,omitempty"`
	// Issuer URI.
	Issuer string `protobuf:"bytes,4,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// contains filtered or unexported fields
}

func (*RegistrationResponse) Descriptor deprecated 

func (*RegistrationResponse) Descriptor() ([]byte, []int)

Deprecated: Use RegistrationResponse.ProtoReflect.Descriptor instead.

func (*RegistrationResponse) GetError 

func (x *RegistrationResponse) GetError() *v11.Error

func (*RegistrationResponse) GetExpiresIn 

func (x *RegistrationResponse) GetExpiresIn() uint64

func (*RegistrationResponse) GetIssuer 

func (x *RegistrationResponse) GetIssuer() string

func (*RegistrationResponse) GetRequestUri 

func (x *RegistrationResponse) GetRequestUri() string

func (*RegistrationResponse) MarshalJSON 

func (msg *RegistrationResponse) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*RegistrationResponse) MarshalToSizedBufferVT 

func (m *RegistrationResponse) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*RegistrationResponse) MarshalToVT 

func (m *RegistrationResponse) MarshalToVT(dAtA []byte) (int, error)

func (*RegistrationResponse) MarshalVT 

func (m *RegistrationResponse) MarshalVT() (dAtA []byte, err error)

func (*RegistrationResponse) ProtoMessage 

func (*RegistrationResponse) ProtoMessage()

func (*RegistrationResponse) ProtoReflect 

func (x *RegistrationResponse) ProtoReflect() protoreflect.Message

func (*RegistrationResponse) Reset 

func (x *RegistrationResponse) Reset()

func (*RegistrationResponse) SizeVT 

func (m *RegistrationResponse) SizeVT() (n int)

func (*RegistrationResponse) String 

func (x *RegistrationResponse) String() string

func (*RegistrationResponse) UnmarshalJSON 

func (msg *RegistrationResponse) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*RegistrationResponse) UnmarshalVT 

func (m *RegistrationResponse) UnmarshalVT(dAtA []byte) error

type TokenRequest 

type TokenRequest struct {

	// REQUIRED. Issuer url.
	Issuer string `protobuf:"bytes,1,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// REQUIRED. The client that request token generation.
	Client *v1.Client `protobuf:"bytes,2,opt,name=client,proto3" json:"client,omitempty"`
	// REQUIRED. The grant_type value to use.
	GrantType string `protobuf:"bytes,3,opt,name=grant_type,json=grantType,proto3" json:"grant_type,omitempty"`
	// OPTIONAL. Scope to use for token request
	Scope *string `protobuf:"bytes,4,opt,name=scope,proto3,oneof" json:"scope,omitempty"`
	// OPTIONAL. Token confirmation.
	TokenConfirmation *v12.TokenConfirmation `protobuf:"bytes,5,opt,name=token_confirmation,json=tokenConfirmation,proto3,oneof" json:"token_confirmation,omitempty"`
	// OPTIONAL
	// https://tools.ietf.org/html/rfc8707
	// Indicates the target service or resource to which access is being
	// requested.  Its value MUST be an absolute URI, as specified by
	// Section 4.3 of [RFC3986].  The URI MUST NOT include a fragment
	// component.  It SHOULD NOT include a query component, but it is
	// recognized that there are cases that make a query component a
	// useful and necessary part of the resource parameter, such as when
	// one or more query parameters are used to scope requests to an
	// application.  The "resource" parameter URI value is an identifier
	// representing the identity of the resource, which MAY be a locator
	// that corresponds to a network-addressable location where the
	// target resource is hosted.  Multiple "resource" parameters MAY be
	// used to indicate that the requested token is intended to be used
	// at multiple resources.
	Resource []string `protobuf:"bytes,6,rep,name=resource,proto3" json:"resource,omitempty"`
	// OPTIONAL.  The logical name of the target service where the client
	// intends to use the requested security token.  This serves a
	// purpose similar to the "resource" parameter but with the client
	// providing a logical name for the target service.  Interpretation
	// of the name requires that the value be something that both the
	// client and the authorization server understand.  An OAuth client
	// identifier, a SAML entity identifier [OASIS.saml-core-2.0-os], and
	// an OpenID Connect Issuer Identifier [OpenID.Core] are examples of
	// things that might be used as "audience" parameter values.
	// However, "audience" values used with a given authorization server
	// must be unique within that server to ensure that they are properly
	// interpreted as the intended type of value.  Multiple "audience"
	// parameters may be used to indicate that the issued token is
	// intended to be used at the multiple audiences listed.  The
	// "audience" and "resource" parameters may be used together to
	// indicate multiple target services with a mix of logical names and
	// resource URIs.
	Audience *string `protobuf:"bytes,7,opt,name=audience,proto3,oneof" json:"audience,omitempty"`
	// REQUIRED.
	//
	// Types that are assignable to Grant:
	//
	//	*TokenRequest_AuthorizationCode
	//	*TokenRequest_ClientCredentials
	//	*TokenRequest_DeviceCode
	//	*TokenRequest_RefreshToken
	//	*TokenRequest_TokenExchange
	Grant isTokenRequest_Grant `protobuf_oneof:"grant"`
	// contains filtered or unexported fields
}

func (*TokenRequest) Descriptor deprecated 

func (*TokenRequest) Descriptor() ([]byte, []int)

Deprecated: Use TokenRequest.ProtoReflect.Descriptor instead.

func (*TokenRequest) GetAudience 

func (x *TokenRequest) GetAudience() string

func (*TokenRequest) GetAuthorizationCode 

func (x *TokenRequest) GetAuthorizationCode() *GrantAuthorizationCode

func (*TokenRequest) GetClient 

func (x *TokenRequest) GetClient() *v1.Client

func (*TokenRequest) GetClientCredentials 

func (x *TokenRequest) GetClientCredentials() *GrantClientCredentials

func (*TokenRequest) GetDeviceCode 

func (x *TokenRequest) GetDeviceCode() *GrantDeviceCode

func (*TokenRequest) GetGrant 

func (m *TokenRequest) GetGrant() isTokenRequest_Grant

func (*TokenRequest) GetGrantType 

func (x *TokenRequest) GetGrantType() string

func (*TokenRequest) GetIssuer 

func (x *TokenRequest) GetIssuer() string

func (*TokenRequest) GetRefreshToken 

func (x *TokenRequest) GetRefreshToken() *GrantRefreshToken

func (*TokenRequest) GetResource 

func (x *TokenRequest) GetResource() []string

func (*TokenRequest) GetScope 

func (x *TokenRequest) GetScope() string

func (*TokenRequest) GetTokenConfirmation 

func (x *TokenRequest) GetTokenConfirmation() *v12.TokenConfirmation

func (*TokenRequest) GetTokenExchange 

func (x *TokenRequest) GetTokenExchange() *GrantTokenExchange

func (*TokenRequest) MarshalJSON 

func (msg *TokenRequest) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*TokenRequest) MarshalToSizedBufferVT 

func (m *TokenRequest) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenRequest) MarshalToVT 

func (m *TokenRequest) MarshalToVT(dAtA []byte) (int, error)

func (*TokenRequest) MarshalVT 

func (m *TokenRequest) MarshalVT() (dAtA []byte, err error)

func (*TokenRequest) ProtoMessage 

func (*TokenRequest) ProtoMessage()

func (*TokenRequest) ProtoReflect 

func (x *TokenRequest) ProtoReflect() protoreflect.Message

func (*TokenRequest) Reset 

func (x *TokenRequest) Reset()

func (*TokenRequest) SizeVT 

func (m *TokenRequest) SizeVT() (n int)

func (*TokenRequest) String 

func (x *TokenRequest) String() string

func (*TokenRequest) UnmarshalJSON 

func (msg *TokenRequest) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*TokenRequest) UnmarshalVT 

func (m *TokenRequest) UnmarshalVT(dAtA []byte) error

type TokenRequest_AuthorizationCode 

type TokenRequest_AuthorizationCode struct {
	// tools.ietf.org/html/rfc6749#section-1.3.1
	AuthorizationCode *GrantAuthorizationCode `protobuf:"bytes,10,opt,name=authorization_code,json=authorizationCode,proto3,oneof"`
}

func (*TokenRequest_AuthorizationCode) MarshalToSizedBufferVT 

func (m *TokenRequest_AuthorizationCode) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenRequest_AuthorizationCode) MarshalToVT 

func (m *TokenRequest_AuthorizationCode) MarshalToVT(dAtA []byte) (int, error)

func (*TokenRequest_AuthorizationCode) SizeVT 

func (m *TokenRequest_AuthorizationCode) SizeVT() (n int)

type TokenRequest_ClientCredentials 

type TokenRequest_ClientCredentials struct {
	// tools.ietf.org/html/rfc6749#section-4.4
	ClientCredentials *GrantClientCredentials `protobuf:"bytes,11,opt,name=client_credentials,json=clientCredentials,proto3,oneof"`
}

func (*TokenRequest_ClientCredentials) MarshalToSizedBufferVT 

func (m *TokenRequest_ClientCredentials) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenRequest_ClientCredentials) MarshalToVT 

func (m *TokenRequest_ClientCredentials) MarshalToVT(dAtA []byte) (int, error)

func (*TokenRequest_ClientCredentials) SizeVT 

func (m *TokenRequest_ClientCredentials) SizeVT() (n int)

type TokenRequest_DeviceCode 

type TokenRequest_DeviceCode struct {
	// tools.ietf.org/html/rfc8628#section-3.4
	DeviceCode *GrantDeviceCode `protobuf:"bytes,12,opt,name=device_code,json=deviceCode,proto3,oneof"`
}

func (*TokenRequest_DeviceCode) MarshalToSizedBufferVT 

func (m *TokenRequest_DeviceCode) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenRequest_DeviceCode) MarshalToVT 

func (m *TokenRequest_DeviceCode) MarshalToVT(dAtA []byte) (int, error)

func (*TokenRequest_DeviceCode) SizeVT 

func (m *TokenRequest_DeviceCode) SizeVT() (n int)

type TokenRequest_RefreshToken 

type TokenRequest_RefreshToken struct {
	// tools.ietf.org/html/rfc6749#section-1.5
	RefreshToken *GrantRefreshToken `protobuf:"bytes,13,opt,name=refresh_token,json=refreshToken,proto3,oneof"`
}

func (*TokenRequest_RefreshToken) MarshalToSizedBufferVT 

func (m *TokenRequest_RefreshToken) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenRequest_RefreshToken) MarshalToVT 

func (m *TokenRequest_RefreshToken) MarshalToVT(dAtA []byte) (int, error)

func (*TokenRequest_RefreshToken) SizeVT 

func (m *TokenRequest_RefreshToken) SizeVT() (n int)

type TokenRequest_TokenExchange 

type TokenRequest_TokenExchange struct {
	// https://tools.ietf.org/html/rfc8693#section-2.1
	TokenExchange *GrantTokenExchange `protobuf:"bytes,14,opt,name=token_exchange,json=tokenExchange,proto3,oneof"`
}

func (*TokenRequest_TokenExchange) MarshalToSizedBufferVT 

func (m *TokenRequest_TokenExchange) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenRequest_TokenExchange) MarshalToVT 

func (m *TokenRequest_TokenExchange) MarshalToVT(dAtA []byte) (int, error)

func (*TokenRequest_TokenExchange) SizeVT 

func (m *TokenRequest_TokenExchange) SizeVT() (n int)

type TokenResponse 

type TokenResponse struct {
	Error *v11.Error `protobuf:"bytes,1,opt,name=error,proto3" json:"error,omitempty"`
	// REQUIRED. Access token information used to generate the final one.
	AccessToken *v12.Token `protobuf:"bytes,2,opt,name=access_token,json=accessToken,proto3" json:"access_token,omitempty"`
	// OPTIONAL. Refresh token information used to generate the final one.
	RefreshToken *v12.Token `protobuf:"bytes,3,opt,name=refresh_token,json=refreshToken,proto3,oneof" json:"refresh_token,omitempty"`
	// OPTIONAL. ID Token information.
	IdToken *v12.Token `protobuf:"bytes,4,opt,name=id_token,json=idToken,proto3,oneof" json:"id_token,omitempty"`
	// REQUIRED. Issuer url.
	Issuer string `protobuf:"bytes,5,opt,name=issuer,proto3" json:"issuer,omitempty"`
	// OPTIONAL. An identifier, as described in Section 3, for the representation
	// of the issued security token. REQUIRED for RFC8693.
	IssuedTokenType *string `protobuf:"bytes,6,opt,name=issued_token_type,json=issuedTokenType,proto3,oneof" json:"issued_token_type,omitempty"`
	// OPTIONAL if the scope of the issued security token is identical to
	// the scope requested by the client; otherwise, it is REQUIRED.
	Scope *string `protobuf:"bytes,7,opt,name=scope,proto3,oneof" json:"scope,omitempty"`
	// contains filtered or unexported fields
}

func (*TokenResponse) Descriptor deprecated 

func (*TokenResponse) Descriptor() ([]byte, []int)

Deprecated: Use TokenResponse.ProtoReflect.Descriptor instead.

func (*TokenResponse) GetAccessToken 

func (x *TokenResponse) GetAccessToken() *v12.Token

func (*TokenResponse) GetError 

func (x *TokenResponse) GetError() *v11.Error

func (*TokenResponse) GetIdToken 

func (x *TokenResponse) GetIdToken() *v12.Token

func (*TokenResponse) GetIssuedTokenType 

func (x *TokenResponse) GetIssuedTokenType() string

func (*TokenResponse) GetIssuer 

func (x *TokenResponse) GetIssuer() string

func (*TokenResponse) GetRefreshToken 

func (x *TokenResponse) GetRefreshToken() *v12.Token

func (*TokenResponse) GetScope 

func (x *TokenResponse) GetScope() string

func (*TokenResponse) MarshalJSON 

func (msg *TokenResponse) MarshalJSON() ([]byte, error)

MarshalJSON implements json.Marshaler

func (*TokenResponse) MarshalToSizedBufferVT 

func (m *TokenResponse) MarshalToSizedBufferVT(dAtA []byte) (int, error)

func (*TokenResponse) MarshalToVT 

func (m *TokenResponse) MarshalToVT(dAtA []byte) (int, error)

func (*TokenResponse) MarshalVT 

func (m *TokenResponse) MarshalVT() (dAtA []byte, err error)

func (*TokenResponse) ProtoMessage 

func (*TokenResponse) ProtoMessage()

func (*TokenResponse) ProtoReflect 

func (x *TokenResponse) ProtoReflect() protoreflect.Message

func (*TokenResponse) Reset 

func (x *TokenResponse) Reset()

func (*TokenResponse) SizeVT 

func (m *TokenResponse) SizeVT() (n int)

func (*TokenResponse) String 

func (x *TokenResponse) String() string

func (*TokenResponse) UnmarshalJSON 

func (msg *TokenResponse) UnmarshalJSON(b []byte) error

UnmarshalJSON implements json.Unmarshaler

func (*TokenResponse) UnmarshalVT 

func (m *TokenResponse) UnmarshalVT(dAtA []byte) error

type UnimplementedAuthorizationServiceServer 

type UnimplementedAuthorizationServiceServer struct {
}

UnimplementedAuthorizationServiceServer should be embedded to have forward compatible implementations.

func (UnimplementedAuthorizationServiceServer) Authorize 

func (UnimplementedAuthorizationServiceServer) Authorize(context.Context, *AuthorizeRequest) (*AuthorizeResponse, error)

func (UnimplementedAuthorizationServiceServer) Token 

func (UnimplementedAuthorizationServiceServer) Token(context.Context, *TokenRequest) (*TokenResponse, error)

type UnsafeAuthorizationServiceServer 

type UnsafeAuthorizationServiceServer interface {
	// contains filtered or unexported methods
}

UnsafeAuthorizationServiceServer may be embedded to opt out of forward compatibility for this service. Use of this interface is not recommended, as added methods to AuthorizationServiceServer will result in compilation errors.

Source Files

View all Source files

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL
go.dev uses cookies from Google to deliver and enhance the quality of its services and to analyze traffic. Learn more.