Skip to main content

Abblix.Oidc.Server.Endpoints.UserInfo Namespace

Abblix.Oidc.Server

Abblix.Oidc.Server.Endpoints.UserInfo Namespace

Classes
UserInfoHandlerHandles user information requests in an OpenID Connect compliant manner. It ensures that requests for user info are correctly validated and processed, returning the requested user information if the request is authorized.
UserInfoRequestProcessorDefault IUserInfoRequestProcessor: assembles the UserInfo claims set from IUserClaimsProvider, filtered by the access token's authorized scopes and any userinfo entry of the OIDC Core §5.5 claims request. Returns InvalidToken if no claims are produced for the subject.
UserInfoRequestValidatorValidates a UserInfo request: extracts the access token (per RFC 6750, either the Authorization: Bearer header or the access_token form/query parameter, but not both), verifies its JWT signature and claims, asserts the typ header equals at+jwt, and resolves the originating authentication session, authorization context and client.