Documentation
¶
Index ¶
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
func ValidateUserCreateRequest ¶
func ValidateUserCreateRequest(input UserCreateRequest) error
Types ¶
type ApiResponse ¶
type AuthErrorResponse ¶
type JWK ¶ added in v1.0.0
type JWK struct {
Kty string `json:"kty"` // Key Type (e.g., RSA)
Kid string `json:"kid"` // Key ID
Use string `json:"use"` // Public Key Use (e.g., sig)
Alg string `json:"alg"` // Algorithm (e.g., RS256)
N string `json:"n"` // Modulus (base64url-encoded)
E string `json:"e"` // Exponent (base64url-encoded)
}
JWK represents a single JSON Web Key
type JWKSResponse ¶ added in v1.0.0
type JWKSResponse struct {
Keys []JWK `json:"keys"`
}
JWKSResponse represents a JSON Web Key Set response for OIDC
type UserCreateRequest ¶
type WellKnownConfigResponse ¶
type WellKnownConfigResponse struct {
// RFC 8414 §2: REQUIRED. Issuer identifier (no query or fragment).
Issuer string `json:"issuer"`
// RFC 8414 §2: REQUIRED (unless no grant types use the authorization endpoint).
AuthorizationEndpoint string `json:"authorization_endpoint"`
// RFC 8414 §2: REQUIRED (unless only implicit grant type is supported).
TokenEndpoint string `json:"token_endpoint"`
// OIDC Discovery §3: RECOMMENDED.
UserInfoEndpoint string `json:"userinfo_endpoint"`
// RFC 8414 §2 / RFC 7591: OPTIONAL. Dynamic client registration endpoint.
RegistrationEndpoint string `json:"registration_endpoint"`
// OIDC RP-Initiated Logout 1.0 §2.1: end_session_endpoint.
EndSessionEndpoint string `json:"end_session_endpoint"`
// RFC 8414 §2: OPTIONAL. JWK Set document URL.
JwksURI string `json:"jwks_uri"`
// RFC 8414 §2: REQUIRED. OAuth 2.0 response_type values supported.
ResponseTypesSupported []string `json:"response_types_supported"`
// OIDC Discovery §3: REQUIRED.
SubjectTypesSupported []string `json:"subject_types_supported"`
// OIDC Discovery §3: REQUIRED.
IDTokenSigningAlgValuesSupported []string `json:"id_token_signing_alg_values_supported"`
// RFC 8414 §2: RECOMMENDED.
ScopesSupported []string `json:"scopes_supported"`
// RFC 8414 §2: OPTIONAL (default: client_secret_basic).
TokenEndpointAuthMethodsSupported []string `json:"token_endpoint_auth_methods_supported"`
// OIDC Discovery §3: RECOMMENDED.
ClaimsSupported []string `json:"claims_supported"`
// RFC 8414 §2: OPTIONAL (default: ["authorization_code", "implicit"]).
GrantTypesSupported []string `json:"grant_types_supported,omitempty"`
// OIDC Core §3: OPTIONAL.
AcrValuesSupported []string `json:"acr_values_supported,omitempty"`
// OIDC Core §3: OPTIONAL.
RequestParameterSupported bool `json:"request_parameter_supported"`
// RFC 8414 §2: OPTIONAL. Token introspection endpoint.
IntrospectionEndpoint string `json:"introspection_endpoint,omitempty"`
// RFC 8414 §2: OPTIONAL. Token revocation endpoint.
RevocationEndpoint string `json:"revocation_endpoint,omitempty"`
// RFC 8414 §2: OPTIONAL. PKCE code challenge methods.
CodeChallengeMethodsSupported []string `json:"code_challenge_methods_supported,omitempty"`
// OIDC Discovery §3: OPTIONAL. Prompt values supported.
PromptValuesSupported []string `json:"prompt_values_supported,omitempty"`
}
WellKnownConfigResponse is the authorization server metadata document per RFC 8414 §2 and OIDC Discovery §3. Served at /.well-known/openid-configuration.
Source Files
Click to show internal directories.
Click to hide internal directories.