Skip to main content

ServiceCollectionExtensions Class

Abblix.Oidc.Server

Abblix.Oidc.Server.Features.ImplicitFlow

ServiceCollectionExtensions Class

DI extensions that opt the host into the OAuth 2.0 / OIDC Implicit and Hybrid Flows.

public static class ServiceCollectionExtensions

Inheritance System.Object → ServiceCollectionExtensions

Methods

ServiceCollectionExtensions.EnableImplicitFlow(this IServiceCollection) Method

Enables support for the Implicit and Hybrid Flows by registering the response-type processors that emit access tokens and ID tokens directly from the authorization endpoint.

public static Microsoft.Extensions.DependencyInjection.IServiceCollection EnableImplicitFlow(this Microsoft.Extensions.DependencyInjection.IServiceCollection services);

Parameters

services Microsoft.Extensions.DependencyInjection.IServiceCollection

The Microsoft.Extensions.DependencyInjection.IServiceCollection to register the Implicit / Hybrid response-type processors in.

Returns

Microsoft.Extensions.DependencyInjection.IServiceCollection
The Microsoft.Extensions.DependencyInjection.IServiceCollection so additional calls can be chained.

Remarks

OAuth 2.1 (draft) deprecates the Implicit Grant. By default this library does not register the token or id_token response-type processors, so the authorization endpoint rejects requests for those response types with unsupported_response_type and the discovery document advertises only code in response_types_supported and omits implicit from grant_types_supported. Hosts that still need Implicit or Hybrid (legacy SPAs, transition deployments) make a deliberate decision to opt in via this method, mirroring the EnablePasswordGrant precedent for ROPC.