table of contents
- buster 2.0.2+ds-7+deb10u5
- buster-backports 2.0.11+ds-4~bpo10+1
- testing 2.0.11+ds-4
- unstable 2.0.11+ds-4
- experimental 2.0.12+ds-1
Lemonldap::NG::Portal::Lib::OpenIDConnect(3pm) | User Contributed Perl Documentation | Lemonldap::NG::Portal::Lib::OpenIDConnect(3pm) |
NAME¶
Lemonldap::NG::Portal::Lib::OpenIDConnect - Common OpenIDConnect functionsSYNOPSIS¶
use Lemonldap::NG::Portal::Lib::OpenIDConnect;DESCRIPTION¶
This module contains common methods for OpenIDConnect authentication and user information loadingMETHODS¶
loadOPs¶
Load OpenID Connect Providers and JWKS dataloadRPs¶
Load OpenID Connect Relying PartiesrefreshJWKSdata¶
Refresh JWKS data if neededgetRP¶
Get Relying Party corresponding to a Client IDgetCallbackUri¶
Compute callback URIbuildAuthorizationCodeAuthnRequest¶
Build Authentication Request URI for Authorization Code FlowbuildAuthorizationCodeAuthnResponse¶
Build Authentication Response URI for Authorization Code FlowbuildImplicitAuthnResponse¶
Build Authentication Response URI for Implicit FlowbuildHybridAuthnResponse¶
Build Authentication Response URI for Hybrid FlowgetAuthorizationCodeAccessToken¶
Get Token response with authorization codecheckTokenResponseValidity¶
Check validity of Token ResponsegetUserInfo¶
Get UserInfo responsedecodeJSON¶
Convert JSON to HashRefnewAuthorizationCode¶
Generate new Authorization Code sessionnewAccessToken¶
Generate new Access Token sessionnewRefreshToken¶
Generate new Refresh Token sessiongetAuthorizationCode¶
Get existing Authorization Code sessiongetAccessToken¶
Get existing Access Token sessiongetRefreshToken¶
Get existing Refresh Token sessiongetOpenIDConnectSession¶
Try to recover the OpenID Connect session corresponding to id and return sessionstoreState¶
Store information in state database and returnextractState¶
Extract state information into $selfextractJWT¶
Extract parts of a JWTverifyJWTSignature¶
Check signature of a JWTverifyHash¶
Check value hashcreateHash¶
Create HashreturnBearerError¶
Return Bearer errorgetEndPointAuthenticationCredentials¶
Get Client ID and Client SecretgetEndPointAccessToken¶
Get Access TokengetAttributesListFromClaim¶
Return list of attributes authorized for a claimbuildUserInfoResponseFromId¶
Return Hash of UserInfo data from session IDbuildUserInfoResponse¶
Return Hash of UserInfo data from session objectcreateJWT¶
Return JWTcreateIDToken¶
Return ID TokengetFlowType¶
Return flow typegetIDTokenSub¶
Return sub field of an ID TokengetJWTJSONData¶
Return payload of a JWT as Hash refkey2jwks¶
Return JWKS representation of a keybuildLogoutRequest¶
Build Logout Request URIbuildLogoutResponse¶
Build Logout Response URIaddRouteFromConf¶
Build a Lemonldap::NG::Common::PSGI::Router route from OIDC configuration attributevalidatePKCEChallenge¶
Validate PKCE code challenge with given code challenge methodSEE ALSO¶
Lemonldap::NG::Portal::AuthOpenIDConnect, Lemonldap::NG::Portal::UserDBOpenIDConnectAUTHORS¶
- LemonLDAP::NG team <http://lemonldap-ng.org/team>
BUG REPORT¶
Use OW2 system to report bug or ask for features: <https://gitlab.ow2.org/lemonldap-ng/lemonldap-ng/issues>DOWNLOAD¶
Lemonldap::NG is available at <http://forge.objectweb.org/project/showfiles.php?group_id=274>COPYRIGHT AND LICENSE¶
See COPYING file for details.This library is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2, or (at your option) any later version.
This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
You should have received a copy of the GNU General Public License along with this program. If not, see <http://www.gnu.org/licenses/>.
2021-07-28 | perl v5.28.1 |