vck-openid/at.asitplus.wallet.lib.oauth2/AuthorizationServiceStrategy

AuthorizationServiceStrategy

interface AuthorizationServiceStrategy(source)

Strategy to implement authorization for credential requests (with scope or OpenIdAuthorizationDetails) in SimpleAuthorizationService.

Inheritors

Functions

Link copied to clipboard
abstract fun allCredentialIdentifier(): Collection<String>

Return all valid credential identifiers for all schemes.

abstract fun filterAuthorizationDetailsForTokenResponse(authorizationDetails: Collection<AuthorizationDetails>): Set<AuthorizationDetails>

Filters the authorization details received in the authorization request to include in the token response.

Link copied to clipboard
abstract fun filterScope(scope: String): String?

Filter the requested scope in the access token request to ones valid for credential issuance

abstract fun matchAndFilterAuthorizationDetailsForTokenResponse(authnRequestAuthnDetails: Collection<AuthorizationDetails>?, tokenRequestAuthnDetails: Set<AuthorizationDetails>): Set<AuthorizationDetails>

RFC9396. (Ch. 6 paraphrased) Check if tokenRequestAuthnDetails have at most the same scope or are implied by authnRequestAuthnDetails.

Link copied to clipboard
abstract fun validateAuthorizationDetails(authorizationDetails: Collection<AuthorizationDetails>)

RFC9396. The AS MUST refuse to process any unknown authorization details type or authorization details not conforming to the respective type definition. The AS MUST abort processing and respond with an error invalid_authorization_details to the client if any of the following are true of the objects in the authorizationDetails structure:

Link copied to clipboard
abstract fun validAuthorizationDetails(location: String): Collection<AuthorizationDetails>

Return all valid authorization details for pre-authorized codes, that the client may use in token requests

Link copied to clipboard
abstract fun validScopes(): String

Return all valid scopes for pre-authorized codes, that the client may use in token requests