Skip to main content

IPushedAuthorizationHandler Interface

Abblix.Oidc.Server

Abblix.Oidc.Server.Endpoints.PushedAuthorization.Interfaces

IPushedAuthorizationHandler Interface

Defines the contract for handling Pushed Authorization Requests (PAR) as specified in OAuth 2.0 and OpenID Connect. Ensures that implementations can validate and process these requests in a secure and compliant manner.

public interface IPushedAuthorizationHandler

Derived
PushedAuthorizationHandler

Methods

IPushedAuthorizationHandler.HandleAsync(AuthorizationRequest, ClientRequest) Method

Asynchronously handles and processes a Pushed Authorization Request, ensuring it complies with OAuth 2.0 and OpenID Connect specifications.

System.Threading.Tasks.Task<Abblix.Oidc.Server.Endpoints.Authorization.Interfaces.AuthorizationResponse> HandleAsync(Abblix.Oidc.Server.Model.AuthorizationRequest authorizationRequest, Abblix.Oidc.Server.Model.ClientRequest clientRequest);

Parameters

authorizationRequest AuthorizationRequest

An instance of AuthorizationRequest representing the details of the authorization request submitted by the client.

clientRequest ClientRequest

An instance of ClientRequest providing additional information about the client making the request, used for contextual validation.

Returns

System.Threading.Tasks.Task<AuthorizationResponse>
A System.Threading.Tasks.Task that resolves to an AuthorizationResponse, indicating the outcome of the request processing. The response can be a successful authorization or an error response if the request fails validation or processing.

Remarks

This method is central to the PAR mechanism, enabling clients to pre-register authorization requests. It validates the request against system policies and, if valid, processes it to generate a unique request URI or returns an error if the request is invalid or unauthorized. This approach enhances security by minimizing the exposure of sensitive information in subsequent authorization requests.