IPushedAuthorizationHandler Interface
Abblix.Oidc.Server
Abblix.Oidc.Server.Endpoints.PushedAuthorization.Interfaces
IPushedAuthorizationHandler Interface
Defines the contract for handling Pushed Authorization Requests (PAR) as specified in OAuth 2.0 and OpenID Connect. Ensures that implementations can validate and process these requests in a secure and compliant manner.
public interface IPushedAuthorizationHandler
Derived
↳ PushedAuthorizationHandler
Methods
IPushedAuthorizationHandler.HandleAsync(AuthorizationRequest, ClientRequest) Method
Asynchronously handles and processes a Pushed Authorization Request, ensuring it complies with OAuth 2.0 and OpenID Connect specifications.
System.Threading.Tasks.Task<Abblix.Oidc.Server.Endpoints.Authorization.Interfaces.AuthorizationResponse> HandleAsync(Abblix.Oidc.Server.Model.AuthorizationRequest authorizationRequest, Abblix.Oidc.Server.Model.ClientRequest clientRequest);
Parameters
authorizationRequest AuthorizationRequest
An instance of AuthorizationRequest representing the details of the authorization request submitted by the client.
clientRequest ClientRequest
An instance of ClientRequest providing additional information about the client making the request, used for contextual validation.
Returns
System.Threading.Tasks.Task<AuthorizationResponse>
A System.Threading.Tasks.Task that resolves to an AuthorizationResponse, indicating the outcome of the
request processing. The response can be a successful authorization or an error response if the request
fails validation or processing.
Remarks
This method is central to the PAR mechanism, enabling clients to pre-register authorization requests. It validates the request against system policies and, if valid, processes it to generate a unique request URI or returns an error if the request is invalid or unauthorized. This approach enhances security by minimizing the exposure of sensitive information in subsequent authorization requests.