vck-openid/at.asitplus.wallet.lib.oidvci/OAuth2AuthorizationServerAdapter

OAuth2AuthorizationServerAdapter

interface OAuth2AuthorizationServerAdapter(source)

Used in OID4VCI by CredentialIssuer to obtain user data when issuing credentials using OID4VCI.

Could also be a remote service

Inheritors

Properties

Link copied to clipboard
abstract val publicContext: String

Used in several fields in at.asitplus.openid.IssuerMetadata, to provide endpoint URLs to clients.

Link copied to clipboard
abstract val supportsClientNonce: Boolean

Whether this authorization server includes at.asitplus.openid.TokenResponseParameters.clientNonce it its token response, i.e. whether the CredentialIssuer needs to verify it using verifyClientNonce.

Functions

Link copied to clipboard
abstract suspend fun getUserInfo(accessToken: String): KmmResult<OidcUserInfoExtended>

Get the OidcUserInfoExtended (holding at.asitplus.openid.OidcUserInfo) associated with the accessToken, that was created before at the Authorization Server.

Link copied to clipboard
abstract suspend fun provideMetadata(): KmmResult<OAuth2AuthorizationServerMetadata>

Provide necessary OAuth2AuthorizationServerMetadata JSON for a client to be able to authenticate

Link copied to clipboard
abstract suspend fun providePreAuthorizedCode(user: OidcUserInfoExtended): String

Provide a pre-authorized code (for flow defined in OID4VCI), to be used by the Wallet implementation to load credentials.

Link copied to clipboard
abstract suspend fun verifyClientNonce(nonce: String): Boolean

Called by CredentialIssuer to verify that nonces contained in proof-of-possession statements from clients are indeed valid.