Namespace Duende.IdentityServer.Validation
Classes
- ApiSecretValidationResult
Validation result for API validation
- ApiSecretValidator
Validates API secrets using the registered secret validators and parsers
- AuthorizeRequestValidationResult
Validation result for authorize requests
- BackchannelAuthenticationRequestIdValidationContext
Context for backchannel authentication request id validation.
- BackchannelAuthenticationRequestValidationResult
Validation result for backchannel authentication requests
- BackchannelAuthenticationUserValidationResult
Represents the result of a backchannel authentication request.
- BackchannelAuthenticationUserValidatorContext
Context information for validating a user during backchannel authentication request.
- BasicAuthenticationSecretParser
Parses a Basic Authentication header
- BearerTokenUsageValidationResult
Models usage of a bearer token
- ClientConfigurationValidationContext
Context for client configuration validation.
- ClientSecretValidationResult
Validation result for client validation
- ClientSecretValidator
Validates a client secret using the registered secret validators and parsers
- CustomAuthorizeRequestValidationContext
Context for custom authorize request validation.
- CustomBackchannelAuthenticationRequestValidationContext
The validation context for a custom CIBA validator.
- CustomTokenRequestValidationContext
Context class for custom token request validation
- DPoPProofValidatonContext
Models the context for validaing DPoP proof tokens.
- DPoPProofValidatonResult
Models the result of DPoP proof validation.
- DefaultClientConfigurationValidator
Default client configuration validator
- DefaultCustomBackchannelAuthenticationValidator
Default implementation of the CIBA validator extensibility point. This validator deliberately does nothing.
- DefaultCustomTokenValidator
Default custom token validator
- DefaultDPoPProofValidator
Default implementation of IDPoPProofValidator
- DefaultIdentityProviderConfigurationValidator
Default identity provider configuration validator
- DefaultResourceValidator
Default implementation of IResourceValidator.
- DefaultScopeParser
Default implementation of IScopeParser.
- DefaultScopeParser.ParseScopeContext
Models the context for parsing a scope.
- DeviceAuthorizationRequestValidationResult
Validation result for device authorization requests
- DeviceCodeValidationContext
Validation result for device code validation request.
- EndSessionCallbackValidationResult
Validation result for end session callback requests.
- EndSessionRequestValidator
Validates requests to the end session endpoint.
- EndSessionValidationResult
Validation result for end session requests
- ExtensionGrantValidationContext
Class describing the extension grant validation context
- ExtensionGrantValidator
Validates an extension grant request using the registered validators
- GrantValidationResult
Models the result of custom grant validation.
- HashedSharedSecretValidator
Validates a shared secret stored in SHA256 or SHA512
- IdentityProviderConfigurationValidationContext
Context for identity provider configuration validation.
- IdentityProviderConfigurationValidationContext<T>
Context for identity provider configuration validation.
- IntrospectionRequestValidationContext
Context for validating an introspection request.
- IntrospectionRequestValidationResult
Validation result for introspection request
- JwtBearerClientAssertionSecretParser
Parses a POST body for a JWT bearer client assertion
- JwtRequestValidationContext
Context for validating a JWT sent as a request parameter.
- JwtRequestValidationResult
Models the result of JWT request validation.
- JwtRequestValidator
Validates JWT authorization request objects
- MutualTlsSecretParser
Parses secret according to MTLS spec
- NopBackchannelAuthenticationUserValidator
Nop implementation of IBackchannelAuthenticationUserValidator.
- NopClientConfigurationValidator
No-op client configuration validator (for backwards-compatibility).
- NotSupportedResourceOwnerPasswordValidator
Default resource owner password validator (no implementation == not supported)
- ParsedScopeValidationError
Models an error parsing a scope.
- ParsedScopeValue
Models a parsed scope value.
- ParsedScopesResult
Represents the result of scope parsing.
- PlainTextSharedSecretValidator
Validates a secret stored in plain text
- PostBodySecretParser
Parses a POST body for secrets
- PrivateKeyJwtSecretValidator
Validates a secret based on RS256 signed JWT token
- ProofKeyThumbprint
Models the thumbprint of a proof key
- PushedAuthorizationRequestValidationContext
Context needed to validate a pushed authorization request.
- PushedAuthorizationValidationResult
Represents the results of validating a pushed authorization request.
- RedirectUriValidationContext
Models the context for validating a client's redirect URI
- ResourceOwnerPasswordValidationContext
Class describing the resource owner password validation context
- ResourceValidationContext
Class describing the resource validation context
- ResourceValidationRequest
Models the request to validate scopes and resource indicators for a client.
- ResourceValidationResult
Result of validation of requested scopes and resource indicators.
- ResponseTypeEqualityComparer
Compares resource_type strings, where the order of space-delimited values is insignificant.
- SecretParser
Uses the registered secret parsers to parse a secret on the current request
- SecretValidationResult
Validation result for secrets
- SecretValidator
Validates secrets using the registered validators
- StrictRedirectUriValidator
Default implementation of redirect URI validator. Validates the URIs against the client's configured URIs.
- StrictRedirectUriValidatorAppAuth
Implementation of strict redirect URI validator that allows a random port if 127.0.0.1 is used.
- TokenRequestValidationContext
Class describing the token endpoint request validation context
- TokenRequestValidationResult
Validation result for token requests
- TokenRevocationRequestValidationResult
Models the validation result of access tokens and id tokens.
- TokenValidationResult
Models the validation result of access tokens and id tokens.
- UserInfoRequestValidationResult
Validation result for userinfo requests
- ValidatedAuthorizeRequest
Models a validated request to the authorize endpoint.
- ValidatedBackchannelAuthenticationRequest
Models a validated request to the backchannel authentication endpoint.
- ValidatedDeviceAuthorizationRequest
Models a validated request to the device authorization endpoint.
- ValidatedEndSessionRequest
Represents a validated end session (logout) request
- ValidatedPushedAuthorizationRequest
A validated pushed authorization request
- ValidatedRequest
Base class for a validate authorize or token request
- ValidatedTokenRequest
Models a validated request to the token endpoint.
- ValidationResult
Minimal validation result class (base-class for more complex validation results)
- X509NameSecretValidator
Validator for an X.509 certificate based client secret using the common name
- X509ThumbprintSecretValidator
Validator for an X.509 certificate based client secret using the thumbprint
Interfaces
- IApiSecretValidator
Validator for handling API client authentication.
- IAuthorizeRequestValidator
Authorize endpoint request validator.
- IBackchannelAuthenticationRequestIdValidator
The backchannel authentication request id validator
- IBackchannelAuthenticationRequestValidator
Interface for the backchannel authentication request validator
- IBackchannelAuthenticationUserValidator
Interface for the backchannel authentication user validation
- IClientConfigurationValidator
Validator for handling client authentication
- IClientSecretValidator
Validator for handling client authentication
- ICustomAuthorizeRequestValidator
Allows inserting custom validation logic into authorize and token requests
- ICustomBackchannelAuthenticationValidator
Extensibility point for CIBA authentication request validation.
- ICustomTokenRequestValidator
Allows inserting custom validation logic into token requests
- ICustomTokenValidator
Allows inserting custom token validation logic
- IDPoPProofValidator
Validator for handling DPoP proofs.
- IDeviceAuthorizationRequestValidator
Device authorization endpoint request validator.
- IDeviceCodeValidator
The device code validator
- IEndSessionRequestValidator
Validates end session requests.
- IExtensionGrantValidator
Handles validation of token requests using custom grant types
- IIdentityProviderConfigurationValidator
Validator for handling identity provider configuration
- IIntrospectionRequestValidator
Interface for the introspection request validator
- IJwtRequestValidator
Interface for request object validator
- IPushedAuthorizationRequestValidator
Validation service for pushed authorization requests. Note that, in addition to validation performed specially for pushed authorization requests, the pushed parameters should be validated in the same way as an authorization request sent to the authorization endpoint. Typical implementations of this service will delegate to the IAuthorizeRequestValidator for this purpose.
- IRedirectUriValidator
Models the logic when validating redirect and post logout redirect URIs.
- IResourceOwnerPasswordValidator
Handles validation of resource owner password credentials
- IResourceValidator
Validates requested resources (scopes and resource indicators)
- IScopeParser
Allows parsing raw scopes values into structured scope values.
- ISecretParser
A service for parsing secrets found on the request
- ISecretValidator
Service for validating a received secret against a stored secret
- ISecretsListParser
Parser for finding the best secret in an Enumerable List
- ISecretsListValidator
Validator for an Enumerable List of Secrets
- ITokenRequestValidator
Interface for the token request validator
- ITokenRevocationRequestValidator
Interface for the token revocation request validator
- ITokenValidator
Interface for the token validator
- IUserInfoRequestValidator
Validator for userinfo requests
Enums
- AuthorizeRequestType
Indicates the context in which authorization validation is occurring (is this the authorize endpoint with or without PAR or the PAR endpoint itself?)
- IntrospectionRequestValidationFailureReason
Failure reasons for introspection request