Documentation
¶
Index ¶
- Constants
- func ACRValuesToBusiness(values []string) []domain.LevelOfAssurance
- func AMRFromMFAType(mfaType domain.MFAType) string
- func AuthRequestFromBusiness(authReq *domain.AuthRequest) (_ op.AuthRequest, err error)
- func ClientFromBusiness(app *model.ApplicationView, defaultLoginURL string, ...) (op.Client, error)
- func CodeChallengeToBusiness(challenge string, method oidc.CodeChallengeMethod) *domain.OIDCCodeChallenge
- func CodeChallengeToOIDC(challenge *domain.OIDCCodeChallenge) *oidc.CodeChallenge
- func CreateAuthRequestToBusiness(ctx context.Context, authReq *oidc.AuthRequest, userAgentID, userID string) *domain.AuthRequest
- func GetSelectedIDPIDFromScopes(scopes oidc.SpaceDelimitedArray) string
- func HttpHeadersFromContext(ctx context.Context) (userAgent, acceptLang string)
- func IpFromContext(ctx context.Context) net.IP
- func MaxAgeToBusiness(maxAge *uint) *time.Duration
- func NewProvider(ctx context.Context, config OPHandlerConfig, command *command.Commands, ...) op.OpenIDProvider
- func ParseBrowserInfoFromContext(ctx context.Context) *domain.BrowserInfo
- func PromptToBusiness(oidcPrompt []string) []domain.Prompt
- func RefreshTokenRequestFromBusiness(tokenView *model.RefreshTokenView) op.RefreshTokenRequest
- func ResponseTypeToBusiness(responseType oidc.ResponseType) domain.OIDCResponseType
- func ResponseTypeToOIDC(responseType domain.OIDCResponseType) oidc.ResponseType
- func UILocalesToBusiness(tags []language.Tag) []string
- type AuthRequest
- func (a *AuthRequest) Done() bool
- func (a *AuthRequest) GetACR() string
- func (a *AuthRequest) GetAMR() []string
- func (a *AuthRequest) GetAudience() []string
- func (a *AuthRequest) GetAuthTime() time.Time
- func (a *AuthRequest) GetClientID() string
- func (a *AuthRequest) GetCodeChallenge() *oidc.CodeChallenge
- func (a *AuthRequest) GetID() string
- func (a *AuthRequest) GetNonce() string
- func (a *AuthRequest) GetRedirectURI() string
- func (a *AuthRequest) GetResponseMode() oidc.ResponseMode
- func (a *AuthRequest) GetResponseType() oidc.ResponseType
- func (a *AuthRequest) GetScopes() []string
- func (a *AuthRequest) GetState() string
- func (a *AuthRequest) GetSubject() string
- type Client
- func (c *Client) AccessTokenLifetime() time.Duration
- func (c *Client) AccessTokenType() op.AccessTokenType
- func (c *Client) ApplicationType() op.ApplicationType
- func (c *Client) AuthMethod() oidc.AuthMethod
- func (c *Client) ClockSkew() time.Duration
- func (c *Client) DevMode() bool
- func (c *Client) GetID() string
- func (c *Client) GrantTypes() []oidc.GrantType
- func (c *Client) IDTokenLifetime() time.Duration
- func (c *Client) IDTokenUserinfoClaimsAssertion() bool
- func (c *Client) IsScopeAllowed(scope string) bool
- func (c *Client) LoginURL(id string) string
- func (c *Client) PostLogoutRedirectURIs() []string
- func (c *Client) RedirectURIs() []string
- func (c *Client) ResponseTypes() []oidc.ResponseType
- func (c *Client) RestrictAdditionalAccessTokenScopes() func(scopes []string) []string
- func (c *Client) RestrictAdditionalIdTokenScopes() func(scopes []string) []string
- type Endpoint
- type EndpointConfig
- type OPHandlerConfig
- type OPStorage
- func (o *OPStorage) AuthRequestByCode(ctx context.Context, code string) (_ op.AuthRequest, err error)
- func (o *OPStorage) AuthRequestByID(ctx context.Context, id string) (_ op.AuthRequest, err error)
- func (o *OPStorage) AuthorizeClientIDSecret(ctx context.Context, id string, secret string) (err error)
- func (o *OPStorage) CreateAccessAndRefreshTokens(ctx context.Context, req op.TokenRequest, refreshToken string) (_, _ string, _ time.Time, err error)
- func (o *OPStorage) CreateAccessToken(ctx context.Context, req op.TokenRequest) (_ string, _ time.Time, err error)
- func (o *OPStorage) CreateAuthRequest(ctx context.Context, req *oidc.AuthRequest, userID string) (_ op.AuthRequest, err error)
- func (o *OPStorage) DeleteAuthRequest(ctx context.Context, id string) (err error)
- func (o *OPStorage) GetClientByClientID(ctx context.Context, id string) (_ op.Client, err error)
- func (o *OPStorage) GetKeyByIDAndIssuer(ctx context.Context, keyID, issuer string) (_ *jose.JSONWebKey, err error)
- func (o *OPStorage) GetKeyByIDAndUserID(ctx context.Context, keyID, userID string) (_ *jose.JSONWebKey, err error)
- func (o *OPStorage) GetKeySet(ctx context.Context) (_ *jose.JSONWebKeySet, err error)
- func (o *OPStorage) GetPrivateClaimsFromScopes(ctx context.Context, userID, clientID string, scopes []string) (claims map[string]interface{}, err error)
- func (o *OPStorage) GetSigningKey(ctx context.Context, keyCh chan<- jose.SigningKey)
- func (o *OPStorage) Health(ctx context.Context) error
- func (o *OPStorage) RevokeToken(ctx context.Context, token, userID, clientID string) *oidc.Error
- func (o *OPStorage) SaveAuthCode(ctx context.Context, id, code string) (err error)
- func (o *OPStorage) SetIntrospectionFromToken(ctx context.Context, introspection oidc.IntrospectionResponse, ...) error
- func (o *OPStorage) SetUserinfoFromScopes(ctx context.Context, userInfo oidc.UserInfoSetter, ...) (err error)
- func (o *OPStorage) SetUserinfoFromToken(ctx context.Context, userInfo oidc.UserInfoSetter, ...) (err error)
- func (o *OPStorage) TerminateSession(ctx context.Context, userID, clientID string) (err error)
- func (o *OPStorage) TokenRequestByRefreshToken(ctx context.Context, refreshToken string) (op.RefreshTokenRequest, error)
- func (o *OPStorage) ValidateJWTProfileScopes(ctx context.Context, subject string, scopes []string) ([]string, error)
- type RefreshTokenRequest
- func (r *RefreshTokenRequest) GetAMR() []string
- func (r *RefreshTokenRequest) GetAudience() []string
- func (r *RefreshTokenRequest) GetAuthTime() time.Time
- func (r *RefreshTokenRequest) GetClientID() string
- func (r *RefreshTokenRequest) GetScopes() []string
- func (r *RefreshTokenRequest) GetSubject() string
- func (r *RefreshTokenRequest) SetCurrentScopes(scopes []string)
- type StorageConfig
Constants ¶
View Source
const ( ScopeProjectRolePrefix = "urn:zitadel:iam:org:project:role:" ClaimProjectRoles = "urn:zitadel:iam:org:project:roles" ScopeUserMetaData = "urn:zitadel:iam:user:metadata" ClaimUserMetaData = ScopeUserMetaData ScopeResourceOwner = "urn:zitadel:iam:user:resourceowner" ClaimResourceOwner = ScopeResourceOwner + ":" )
Variables ¶
This section is empty.
Functions ¶
func ACRValuesToBusiness ¶
func ACRValuesToBusiness(values []string) []domain.LevelOfAssurance
func AMRFromMFAType ¶
func AuthRequestFromBusiness ¶
func AuthRequestFromBusiness(authReq *domain.AuthRequest) (_ op.AuthRequest, err error)
func ClientFromBusiness ¶
func CodeChallengeToBusiness ¶
func CodeChallengeToBusiness(challenge string, method oidc.CodeChallengeMethod) *domain.OIDCCodeChallenge
func CodeChallengeToOIDC ¶
func CodeChallengeToOIDC(challenge *domain.OIDCCodeChallenge) *oidc.CodeChallenge
func CreateAuthRequestToBusiness ¶
func CreateAuthRequestToBusiness(ctx context.Context, authReq *oidc.AuthRequest, userAgentID, userID string) *domain.AuthRequest
func GetSelectedIDPIDFromScopes ¶ added in v1.36.0
func GetSelectedIDPIDFromScopes(scopes oidc.SpaceDelimitedArray) string
func HttpHeadersFromContext ¶
func MaxAgeToBusiness ¶ added in v1.16.2
func NewProvider ¶
func NewProvider(ctx context.Context, config OPHandlerConfig, command *command.Commands, query *query.Queries, repo repository.Repository, keyConfig *crypto.KeyConfig, localDevMode bool) op.OpenIDProvider
func ParseBrowserInfoFromContext ¶
func ParseBrowserInfoFromContext(ctx context.Context) *domain.BrowserInfo
func PromptToBusiness ¶
func RefreshTokenRequestFromBusiness ¶ added in v1.8.0
func RefreshTokenRequestFromBusiness(tokenView *model.RefreshTokenView) op.RefreshTokenRequest
func ResponseTypeToBusiness ¶
func ResponseTypeToBusiness(responseType oidc.ResponseType) domain.OIDCResponseType
func ResponseTypeToOIDC ¶
func ResponseTypeToOIDC(responseType domain.OIDCResponseType) oidc.ResponseType
func UILocalesToBusiness ¶
Types ¶
type AuthRequest ¶
type AuthRequest struct {
*domain.AuthRequest
}
func (*AuthRequest) Done ¶
func (a *AuthRequest) Done() bool
func (*AuthRequest) GetACR ¶
func (a *AuthRequest) GetACR() string
func (*AuthRequest) GetAMR ¶
func (a *AuthRequest) GetAMR() []string
func (*AuthRequest) GetAudience ¶
func (a *AuthRequest) GetAudience() []string
func (*AuthRequest) GetAuthTime ¶
func (a *AuthRequest) GetAuthTime() time.Time
func (*AuthRequest) GetClientID ¶
func (a *AuthRequest) GetClientID() string
func (*AuthRequest) GetCodeChallenge ¶
func (a *AuthRequest) GetCodeChallenge() *oidc.CodeChallenge
func (*AuthRequest) GetID ¶
func (a *AuthRequest) GetID() string
func (*AuthRequest) GetNonce ¶
func (a *AuthRequest) GetNonce() string
func (*AuthRequest) GetRedirectURI ¶
func (a *AuthRequest) GetRedirectURI() string
func (*AuthRequest) GetResponseMode ¶ added in v1.53.0
func (a *AuthRequest) GetResponseMode() oidc.ResponseMode
func (*AuthRequest) GetResponseType ¶
func (a *AuthRequest) GetResponseType() oidc.ResponseType
func (*AuthRequest) GetScopes ¶
func (a *AuthRequest) GetScopes() []string
func (*AuthRequest) GetState ¶
func (a *AuthRequest) GetState() string
func (*AuthRequest) GetSubject ¶
func (a *AuthRequest) GetSubject() string
type Client ¶
type Client struct {
*model.ApplicationView
// contains filtered or unexported fields
}
func (*Client) AccessTokenLifetime ¶
func (*Client) AccessTokenType ¶
func (c *Client) AccessTokenType() op.AccessTokenType
func (*Client) ApplicationType ¶
func (c *Client) ApplicationType() op.ApplicationType
func (*Client) AuthMethod ¶ added in v0.70.0
func (c *Client) AuthMethod() oidc.AuthMethod
func (*Client) GrantTypes ¶ added in v1.9.1
func (*Client) IDTokenLifetime ¶
func (*Client) IDTokenUserinfoClaimsAssertion ¶ added in v0.106.0
func (*Client) IsScopeAllowed ¶ added in v0.101.0
func (*Client) PostLogoutRedirectURIs ¶
func (*Client) RedirectURIs ¶
func (*Client) ResponseTypes ¶ added in v0.70.0
func (c *Client) ResponseTypes() []oidc.ResponseType
func (*Client) RestrictAdditionalAccessTokenScopes ¶ added in v0.101.0
func (*Client) RestrictAdditionalIdTokenScopes ¶ added in v0.101.0
type EndpointConfig ¶
type OPHandlerConfig ¶
type OPHandlerConfig struct {
OPConfig *op.Config
StorageConfig StorageConfig
UserAgentCookieConfig *middleware.UserAgentCookieConfig
Cache *middleware.CacheConfig
Endpoints *EndpointConfig
}
type OPStorage ¶
type OPStorage struct {
// contains filtered or unexported fields
}
func (*OPStorage) AuthRequestByCode ¶
func (*OPStorage) AuthRequestByID ¶
func (*OPStorage) AuthorizeClientIDSecret ¶
func (*OPStorage) CreateAccessAndRefreshTokens ¶ added in v1.8.0
func (*OPStorage) CreateAccessToken ¶ added in v1.8.0
func (*OPStorage) CreateAuthRequest ¶
func (o *OPStorage) CreateAuthRequest(ctx context.Context, req *oidc.AuthRequest, userID string) (_ op.AuthRequest, err error)
func (*OPStorage) DeleteAuthRequest ¶
func (*OPStorage) GetClientByClientID ¶
func (*OPStorage) GetKeyByIDAndIssuer ¶ added in v0.115.0
func (*OPStorage) GetKeyByIDAndUserID ¶ added in v0.85.3
func (*OPStorage) GetPrivateClaimsFromScopes ¶ added in v0.94.0
func (*OPStorage) GetSigningKey ¶
func (o *OPStorage) GetSigningKey(ctx context.Context, keyCh chan<- jose.SigningKey)
func (*OPStorage) RevokeToken ¶ added in v1.53.0
func (*OPStorage) SaveAuthCode ¶
func (*OPStorage) SetIntrospectionFromToken ¶ added in v0.115.0
func (*OPStorage) SetUserinfoFromScopes ¶ added in v0.115.0
func (*OPStorage) SetUserinfoFromToken ¶ added in v0.115.0
func (*OPStorage) TerminateSession ¶
func (*OPStorage) TokenRequestByRefreshToken ¶ added in v1.8.0
type RefreshTokenRequest ¶ added in v1.8.0
type RefreshTokenRequest struct {
*model.RefreshTokenView
}
func (*RefreshTokenRequest) GetAMR ¶ added in v1.8.0
func (r *RefreshTokenRequest) GetAMR() []string
func (*RefreshTokenRequest) GetAudience ¶ added in v1.8.0
func (r *RefreshTokenRequest) GetAudience() []string
func (*RefreshTokenRequest) GetAuthTime ¶ added in v1.8.0
func (r *RefreshTokenRequest) GetAuthTime() time.Time
func (*RefreshTokenRequest) GetClientID ¶ added in v1.8.0
func (r *RefreshTokenRequest) GetClientID() string
func (*RefreshTokenRequest) GetScopes ¶ added in v1.8.0
func (r *RefreshTokenRequest) GetScopes() []string
func (*RefreshTokenRequest) GetSubject ¶ added in v1.8.0
func (r *RefreshTokenRequest) GetSubject() string
func (*RefreshTokenRequest) SetCurrentScopes ¶ added in v1.8.0
func (r *RefreshTokenRequest) SetCurrentScopes(scopes []string)
Source Files
Click to show internal directories.
Click to hide internal directories.