| DeviceAuthorizationHandler | Handles device authorization requests as defined in RFC 8628. Coordinates validation and processing of requests to generate device_code and user_code. |
| DeviceAuthorizationOptionsValidator | Fails loudly the first time OidcOptions is resolved when the device authorization endpoint is enabled but its settings are absent, instead of letting the contradiction surface as an unhandled HTTP 500 on the first request. The endpoint is off in the default Base set and is turned on only by an explicit AddDeviceAuthorization() opt-in (or a host that sets the DeviceAuthorization flag itself), yet DeviceAuthorization has no default — so a host that enables it without configuring it has an internally inconsistent configuration this validator turns into a clear startup error. A no-op when the endpoint is disabled or the settings are present. |
| DeviceAuthorizationRequestProcessor | Processes validated device authorization requests, generating codes and storing the request. |
| DeviceAuthorizationRequestValidator | Validates device authorization requests by delegating to a context validator. |