ClientSecretJwtAuthenticator Class
Abblix.Oidc.Server
Abblix.Oidc.Server.Features.ClientAuthentication
ClientSecretJwtAuthenticator Class
Authenticates client requests using the client_secret_jwt authentication method. This method is used in scenarios where the client signs a JWT with its secret as a means of authentication.
public class ClientSecretJwtAuthenticator : Abblix.Oidc.Server.Features.ClientAuthentication.JwtAssertionAuthenticatorBase
Inheritance System.Object → JwtAssertionAuthenticatorBase → ClientSecretJwtAuthenticator
Constructors
ClientSecretJwtAuthenticator(ILogger<ClientSecretJwtAuthenticator>, IJsonWebTokenValidator, IClientInfoProvider, IRequestInfoProvider, TimeProvider, IJwtReplayCache) Constructor
Authenticates client requests using the client_secret_jwt authentication method. This method is used in scenarios where the client signs a JWT with its secret as a means of authentication.
public ClientSecretJwtAuthenticator(Microsoft.Extensions.Logging.ILogger<Abblix.Oidc.Server.Features.ClientAuthentication.ClientSecretJwtAuthenticator> logger, Abblix.Jwt.IJsonWebTokenValidator tokenValidator, Abblix.Oidc.Server.Features.ClientInformation.IClientInfoProvider clientInfoProvider, Abblix.Oidc.Server.Common.Interfaces.IRequestInfoProvider requestInfoProvider, System.TimeProvider clock, Abblix.Oidc.Server.Features.ReplayPrevention.IJwtReplayCache replayCache);
Parameters
logger Microsoft.Extensions.Logging.ILogger<ClientSecretJwtAuthenticator>
Logger for recording the authentication process and any issues encountered.
tokenValidator IJsonWebTokenValidator
Validator for JSON Web Tokens.
clientInfoProvider IClientInfoProvider
Provider for retrieving client information.
requestInfoProvider IRequestInfoProvider
Provider for retrieving request information.
clock System.TimeProvider
Time provider for checking secret expiration.
replayCache IJwtReplayCache
Replay cache that records assertion jti values and atomically rejects reuse.
Properties
ClientSecretJwtAuthenticator.ClientAuthenticationMethodsSupported Property
Specifies the client authentication method this authenticator supports, which is 'client_secret_jwt'. This indicates that the authenticator handles client authentication using JSON Web Tokens (JWT) for the client secret, as defined in the OpenID Connect specification. It involves using JWTs as client credentials for authentication, where the JWT assertion is signed by the client's secret key.
public override System.Collections.Generic.IEnumerable<string> ClientAuthenticationMethodsSupported { get; }
Implements ClientAuthenticationMethodsSupported