| Maintainer | krdlab@gmail.com |
|---|---|
| Stability | experimental |
| Safe Haskell | None |
| Language | Haskell2010 |
Web.OIDC.Client.IdTokenFlow
Description
Synopsis
- getAuthenticationRequestUrl :: MonadIO m => OIDC -> Scope -> Maybe State -> Parameters -> m URI
- getValidIdTokenClaims :: (MonadIO m, FromJSON a) => SessionStore m -> OIDC -> State -> m ByteString -> m (IdTokenClaims a)
- prepareAuthenticationRequestUrl :: MonadIO m => SessionStore m -> OIDC -> Scope -> Parameters -> m URI
Documentation
getAuthenticationRequestUrl Source #
Arguments
| :: MonadIO m | |
| => OIDC | |
| -> Scope | used to specify what are privileges requested for tokens. (use |
| -> Maybe State | used for CSRF mitigation. (recommended parameter) |
| -> Parameters | Optional parameters |
| -> m URI |
Warning: This function doesn't manage state and nonce. Use prepareAuthenticationRequestUrl only unless your IdP doesn't support state and/or nonce.
Make URL for Authorization Request.
getValidIdTokenClaims :: (MonadIO m, FromJSON a) => SessionStore m -> OIDC -> State -> m ByteString -> m (IdTokenClaims a) Source #
Get and validate access token and with code and state stored in the SessionStore.
Then deletes session info by sessionStoreDelete.
prepareAuthenticationRequestUrl Source #
Arguments
| :: MonadIO m | |
| => SessionStore m | |
| -> OIDC | |
| -> Scope | used to specify what are privileges requested for tokens. (use |
| -> Parameters | Optional parameters |
| -> m URI |
Make URL for Authorization Request after generating state and nonce from SessionStore.