| ClientValidator | Validates the client in a device authorization request. |
| DeviceAuthorizationDetailsValidator | Thin endpoint-side adapter that delegates the RFC 9396 §3 device-flow authorization_details validation to ApplyAsync(JsonArray, ClientInfo, CancellationToken) and propagates the OidcError as-is. All actual policy lives on the composite so /authorize, /par, CIBA and device-flow endpoints share one source of truth. |
| DeviceAuthorizationValidationContext | Represents the context for validating a device authorization request. |
| DeviceAuthorizationValidatorComposite | Composes multiple device authorization context validators into a single validator. Executes validators in sequence until one returns an error or all pass. |
| ResourceValidator | Validates the resources requested in a device authorization request. |
| ScopeValidator | Validates the scopes requested in a device authorization request. |