IJwtAlgorithmsProvider Interface
Abblix.Oidc.Server
Abblix.Oidc.Server.Endpoints.Configuration.Interfaces
IJwtAlgorithmsProvider Interface
Provides metadata about supported JWT signing and validation algorithms for OpenID Connect discovery.
public interface IJwtAlgorithmsProvider
Derived
↳ JwtAlgorithmsProvider
Properties
IJwtAlgorithmsProvider.AuthorizationEncryptionAlgValuesSupported Property
Lists the JWE key-management algorithms (the alg values) the authorization server can use to
encrypt JARM authorization responses, advertised via authorization_encryption_alg_values_supported
(JARM §4).
System.Collections.Generic.IEnumerable<string> AuthorizationEncryptionAlgValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.AuthorizationEncryptionEncValuesSupported Property
Lists the JWE content-encryption algorithms (the enc values) the authorization server can use to
encrypt JARM authorization responses, advertised via authorization_encryption_enc_values_supported
(JARM §4).
System.Collections.Generic.IEnumerable<string> AuthorizationEncryptionEncValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.AuthorizationSigningAlgValuesSupported Property
Lists the JWS algorithms the authorization server uses to sign JARM authorization responses,
advertised via authorization_signing_alg_values_supported (JARM §4).
System.Collections.Generic.IEnumerable<string> AuthorizationSigningAlgValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.BackChannelAuthenticationRequestSigningAlgValuesSupported Property
Lists the JWS algorithms a client may use to sign a CIBA backchannel authentication request,
advertised via backchannel_authentication_request_signing_alg_values_supported. CIBA
Core §7.1.1 mandates an asymmetric signature, so both none and the symmetric HS*
algorithms are excluded from the underlying verification set.
System.Collections.Generic.IEnumerable<string> BackChannelAuthenticationRequestSigningAlgValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.DpopSigningAlgorithmsSupported Property
Lists the JWS signing algorithms the authorization server accepts on inbound DPoP
proofs (RFC 9449 §5.1 dpop_signing_alg_values_supported): the intersection
of SigningAlgorithmsSupported with the static DPoP-compatible
whitelist. The validator-side set is the source — the AS verifies proofs the
client signs, it does not issue them.
System.Collections.Generic.IEnumerable<string> DpopSigningAlgorithmsSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.IntrospectionEncryptionAlgValuesSupported Property
Lists the JWE key-management algorithms (the alg values) the authorization server can use to encrypt
JWT introspection responses, advertised via introspection_encryption_alg_values_supported
(RFC 9701 §7).
System.Collections.Generic.IEnumerable<string> IntrospectionEncryptionAlgValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.IntrospectionEncryptionEncValuesSupported Property
Lists the JWE content-encryption algorithms (the enc values) the authorization server can use to
encrypt JWT introspection responses, advertised via introspection_encryption_enc_values_supported
(RFC 9701 §7).
System.Collections.Generic.IEnumerable<string> IntrospectionEncryptionEncValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.IntrospectionSigningAlgValuesSupported Property
Lists the JWS algorithms the authorization server uses to sign JWT introspection responses,
advertised via introspection_signing_alg_values_supported (RFC 9701 §7).
System.Collections.Generic.IEnumerable<string> IntrospectionSigningAlgValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.RequestObjectEncryptionAlgValuesSupported Property
Lists the JWE key-management algorithms (the alg values) the authorization server
accepts when a client encrypts a request object to the server (RFC 9101 §6.1),
advertised via request_object_encryption_alg_values_supported.
System.Collections.Generic.IEnumerable<string> RequestObjectEncryptionAlgValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.RequestObjectEncryptionEncValuesSupported Property
Lists the JWE content-encryption algorithms (the enc values) the authorization server
accepts when a client encrypts a request object to the server (RFC 9101 §6.1),
advertised via request_object_encryption_enc_values_supported.
System.Collections.Generic.IEnumerable<string> RequestObjectEncryptionEncValuesSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.SignedResponseAlgorithmsSupported Property
Lists the signing algorithms supported for ID tokens and UserInfo responses.
System.Collections.Generic.IEnumerable<string> SignedResponseAlgorithmsSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.SigningAlgorithmsSupported Property
Lists the signing algorithms supported for validating signed requests and authentication.
System.Collections.Generic.IEnumerable<string> SigningAlgorithmsSupported { get; }
Property Value
System.Collections.Generic.IEnumerable<System.String>
IJwtAlgorithmsProvider.TokenEndpointAuthSigningAlgValuesSupported Property
Lists the JWS algorithms a client may use to sign a JWT client-authentication assertion
(client_secret_jwt / private_key_jwt), advertised via
token_endpoint_auth_signing_alg_values_supported. RFC 8414 §2 and OpenID Connect
Discovery 1.0 §3 both state the value none MUST NOT appear here, so it is excluded
from the underlying verification set.
System.Collections.Generic.IEnumerable<string> TokenEndpointAuthSigningAlgValuesSupported { get; }