Skip to main content

ClientSecretJwtAuthenticator Class

Abblix.Oidc.Server

Abblix.Oidc.Server.Features.ClientAuthentication

ClientSecretJwtAuthenticator Class

Authenticates client requests using the client_secret_jwt authentication method. This method is used in scenarios where the client signs a JWT with its secret as a means of authentication.

public class ClientSecretJwtAuthenticator : Abblix.Oidc.Server.Features.ClientAuthentication.JwtAssertionAuthenticatorBase

Inheritance System.ObjectJwtAssertionAuthenticatorBase → ClientSecretJwtAuthenticator

Constructors

ClientSecretJwtAuthenticator(ILogger<ClientSecretJwtAuthenticator>, IJsonWebTokenValidator, IClientInfoProvider, IRequestInfoProvider, TimeProvider, IJwtReplayCache) Constructor

Authenticates client requests using the client_secret_jwt authentication method. This method is used in scenarios where the client signs a JWT with its secret as a means of authentication.

public ClientSecretJwtAuthenticator(Microsoft.Extensions.Logging.ILogger<Abblix.Oidc.Server.Features.ClientAuthentication.ClientSecretJwtAuthenticator> logger, Abblix.Jwt.IJsonWebTokenValidator tokenValidator, Abblix.Oidc.Server.Features.ClientInformation.IClientInfoProvider clientInfoProvider, Abblix.Oidc.Server.Common.Interfaces.IRequestInfoProvider requestInfoProvider, System.TimeProvider clock, Abblix.Oidc.Server.Features.ReplayPrevention.IJwtReplayCache replayCache);

Parameters

logger Microsoft.Extensions.Logging.ILogger<ClientSecretJwtAuthenticator>

Logger for recording the authentication process and any issues encountered.

tokenValidator IJsonWebTokenValidator

Validator for JSON Web Tokens.

clientInfoProvider IClientInfoProvider

Provider for retrieving client information.

requestInfoProvider IRequestInfoProvider

Provider for retrieving request information.

clock System.TimeProvider

Time provider for checking secret expiration.

replayCache IJwtReplayCache

Replay cache that records assertion jti values and atomically rejects reuse.

Properties

ClientSecretJwtAuthenticator.ClientAuthenticationMethodsSupported Property

Specifies the client authentication method this authenticator supports, which is 'client_secret_jwt'. This indicates that the authenticator handles client authentication using JSON Web Tokens (JWT) for the client secret, as defined in the OpenID Connect specification. It involves using JWTs as client credentials for authentication, where the JWT assertion is signed by the client's secret key.

public override System.Collections.Generic.IEnumerable<string> ClientAuthenticationMethodsSupported { get; }

Implements ClientAuthenticationMethodsSupported

Property Value

System.Collections.Generic.IEnumerable<System.String>