• Home
• org.http4k
• http4k-security-oauth
• 5.17.0.0
• source code
• ClientValidator.kt

×

Project download

Many resources are needed to download a project. Please understand that we have to compensate our server costs. Thank you in advance.
Project price only 1 $

You can buy this project and download/modify it how often you want.

org.http4k.security.oauth.server.ClientValidator.kt Maven / Gradle / Ivy

package org.http4k.security.oauth.server

import org.http4k.core.Request
import org.http4k.core.Uri

/**
 * Provides a consistent way to retrieve clients attempting to use an authorization code flow
 */
interface ClientValidator {
    /**
     * - check that client_id is a valid, registered app
     */
    fun validateClientId(request: Request, clientId: ClientId): Boolean

    /**
     * - redirection URI is one of the allowed ones for that client
     */
    fun validateRedirection(request: Request, clientId: ClientId, redirectionUri: Uri): Boolean

    /**
     * - scopes are allowed for that client
     */
    fun validateScopes(request: Request, clientId: ClientId, scopes: List): Boolean

    /**
     * Validate that credentials provided by the client match its registration records
     */
    fun validateCredentials(request: Request, clientId: ClientId, clientSecret: String): Boolean
}