Skip to main content

ClientValidator Class

Abblix.Oidc.Server

Abblix.Oidc.Server.Endpoints.EndSession.Validation

ClientValidator Class

Resolves the client referenced by the request (either via client_id directly or via id_token_hint's audience) into a ClientInfo stored on the context for later steps such as post-logout redirect URI validation. A request with no client identifier at all is permitted to pass; an identifier that does not resolve yields UnauthorizedClient.

public class ClientValidator : Abblix.Oidc.Server.Endpoints.EndSession.Validation.IEndSessionContextValidator

Inheritance System.Object → ClientValidator

Implements IEndSessionContextValidator

Constructors

ClientValidator(ILogger<ClientValidator>, IClientInfoProvider) Constructor

Resolves the client referenced by the request (either via client_id directly or via id_token_hint's audience) into a ClientInfo stored on the context for later steps such as post-logout redirect URI validation. A request with no client identifier at all is permitted to pass; an identifier that does not resolve yields UnauthorizedClient.

public ClientValidator(Microsoft.Extensions.Logging.ILogger<Abblix.Oidc.Server.Endpoints.EndSession.Validation.ClientValidator> logger, Abblix.Oidc.Server.Features.ClientInformation.IClientInfoProvider clientInfoProvider);

Parameters

logger Microsoft.Extensions.Logging.ILogger<ClientValidator>
clientInfoProvider IClientInfoProvider

Methods

ClientValidator.ValidateAsync(EndSessionValidationContext) Method

Performs this validator's check against the shared context.

public System.Threading.Tasks.Task<Abblix.Oidc.Server.Common.OidcError?> ValidateAsync(Abblix.Oidc.Server.Endpoints.EndSession.Validation.EndSessionValidationContext context);

Parameters

context EndSessionValidationContext

Mutable validation context shared with subsequent steps; this validator may populate fields (such as resolved ClientInfo or parsed id_token_hint).

Implements ValidateAsync(EndSessionValidationContext)

Returns

System.Threading.Tasks.Task<OidcError>
null if the request passes this step, otherwise the error to surface.