| ITokenAuthorizationContextEvaluator | Defines an evaluator for determining the AuthorizationContext based on token requests. |
| ITokenHandler | Defines a contract for handling OAuth 2.0 token requests, encompassing validation, processing, and issuance of tokens based on authorization grants. |
| ITokenRequestProcessor | Processes incoming token requests from clients, ensuring they are valid and authorized before issuing the appropriate token response. Depending on the request type and granted permissions, the response can include various types of tokens such as Access Tokens, Refresh Tokens and ID Tokens. |
| ITokenRequestValidator | Validates an incoming OAuth 2.0 token request (RFC 6749 §3.2) against the rules required by the requested grant_type: client authentication, grant ownership (e.g. an authorization code MUST have been issued to the authenticated client per OIDC Core 1.0 §3.1.3.2), redirect URI equivalence for code exchange, scope and resource (RFC 8707) consistency, and PKCE verifier matching (RFC 7636 §4.5) where applicable. |