Frodo Library - v4.0.0-10
    Preparing search index...

    Type Alias OAuth2ProviderSkeleton

    OAuth2ProviderSkeleton: AmConfigEntityInterface & {
        advancedOAuth2Config?: {
            allowClientCredentialsInTokenRequestQueryParameters?: boolean;
            allowedAudienceValues?: string[];
            authenticationAttributes?: string[];
            codeVerifierEnforced?: string;
            defaultScopes?: string[];
            displayNameAttribute?: string;
            expClaimRequiredInRequestObject?: boolean;
            grantTypes?: string[];
            hashSalt?: string;
            macaroonTokenFormat?: string;
            maxAgeOfRequestObjectNbfClaim?: number;
            maxDifferenceBetweenRequestObjectNbfAndExp?: number;
            moduleMessageEnabledInPasswordGrant?: boolean;
            nbfClaimRequiredInRequestObject?: boolean;
            parRequestUriLifetime?: number;
            passwordGrantAuthService?: string;
            persistentClaims?: string[];
            refreshTokenGracePeriod?: number;
            requestObjectProcessing?: string;
            requirePushedAuthorizationRequests?: boolean;
            responseTypeClasses?: string[];
            supportedScopes?: string[];
            supportedSubjectTypes?: string[];
            tlsCertificateBoundAccessTokensEnabled?: boolean;
            tlsCertificateRevocationCheckingEnabled?: boolean;
            tlsClientCertificateHeaderFormat?: string;
            tokenCompressionEnabled?: boolean;
            tokenEncryptionEnabled?: boolean;
            tokenExchangeClasses?: string[];
            tokenSigningAlgorithm?: string;
            tokenValidatorClasses?: string[];
            [k: string]: string | number | boolean | object | string[];
        };
        advancedOIDCConfig: {
            alwaysAddClaimsToToken?: boolean;
            amrMappings?: any;
            authorisedIdmDelegationClients?: string[];
            authorisedOpenIdConnectSSOClients?: string[];
            claimsParameterSupported?: boolean;
            defaultACR?: string[];
            idTokenInfoClientAuthenticationEnabled?: boolean;
            includeAllKtyAlgCombinationsInJwksUri?: boolean;
            loaMapping?: any;
            storeOpsTokens?: boolean;
            supportedAuthorizationResponseEncryptionAlgorithms?: string[];
            supportedAuthorizationResponseEncryptionEnc?: string[];
            supportedAuthorizationResponseSigningAlgorithms?: string[];
            supportedRequestParameterEncryptionAlgorithms?: string[];
            supportedRequestParameterEncryptionEnc?: string[];
            supportedRequestParameterSigningAlgorithms?: string[];
            supportedTokenEndpointAuthenticationSigningAlgorithms?: string[];
            supportedTokenIntrospectionResponseEncryptionAlgorithms?: string[];
            supportedTokenIntrospectionResponseEncryptionEnc?: string[];
            supportedTokenIntrospectionResponseSigningAlgorithms?: string[];
            supportedUserInfoEncryptionAlgorithms?: string[];
            supportedUserInfoEncryptionEnc?: string[];
            supportedUserInfoSigningAlgorithms?: string[];
            useForceAuthnForMaxAge?: boolean;
            useForceAuthnForPromptLogin?: boolean;
            [k: string]: string
            | number
            | boolean
            | object
            | string[];
        };
        cibaConfig?: {
            cibaAuthReqIdLifetime: number;
            cibaMinimumPollingInterval: number;
            supportedCibaSigningAlgorithms: string[];
            [k: string]: string
            | number
            | boolean
            | object
            | string[];
        };
        clientDynamicRegistrationConfig?: {
            allowDynamicRegistration: boolean;
            dynamicClientRegistrationScope: string;
            dynamicClientRegistrationSoftwareStatementRequired: boolean;
            generateRegistrationAccessTokens: boolean;
            requiredSoftwareStatementAttestedAttributes: string[];
            [k: string]: string
            | number
            | boolean
            | object
            | string[];
        };
        consent?: {
            clientsCanSkipConsent: boolean;
            enableRemoteConsent: boolean;
            supportedRcsRequestEncryptionAlgorithms: string[];
            supportedRcsRequestEncryptionMethods: string[];
            supportedRcsRequestSigningAlgorithms: string[];
            supportedRcsResponseEncryptionAlgorithms: string[];
            supportedRcsResponseEncryptionMethods: string[];
            supportedRcsResponseSigningAlgorithms: string[];
            [k: string]: string
            | number
            | boolean
            | object
            | string[];
        };
        coreOAuth2Config?: {
            accessTokenLifetime: number;
            accessTokenMayActScript: "[Empty]"
            | string;
            codeLifetime: number;
            issueRefreshToken: boolean;
            issueRefreshTokenOnRefreshedToken: boolean;
            macaroonTokensEnabled: boolean;
            oidcMayActScript: "[Empty]" | string;
            refreshTokenLifetime: number;
            scopesPolicySet: string;
            statelessTokensEnabled: boolean;
            usePolicyEngineForScope: boolean;
            [k: string]: string | number | boolean | object | string[];
        };
        coreOIDCConfig?: {
            jwtTokenLifetime: number;
            oidcDiscoveryEndpointEnabled: boolean;
            overrideableOIDCClaims: string[];
            supportedClaims: string[];
            supportedIDTokenEncryptionAlgorithms: string[];
            supportedIDTokenEncryptionMethods: string[];
            supportedIDTokenSigningAlgorithms: string[];
            [k: string]: string
            | number
            | boolean
            | object
            | string[];
        };
        deviceCodeConfig?: {
            deviceCodeLifetime: number;
            devicePollInterval: number;
            deviceUserCodeCharacterSet: string;
            deviceUserCodeLength: number;
            [k: string]: string
            | number
            | boolean
            | object
            | string[];
        };
        pluginsConfig?: {
            accessTokenEnricherClass?: string;
            accessTokenModificationPluginType?: "JAVA"
            | "SCRIPTED";
            accessTokenModificationScript?: "[Empty]" | string;
            accessTokenModifierClass?: string;
            authorizeEndpointDataProviderClass?: string;
            authorizeEndpointDataProviderPluginType?: "JAVA" | "SCRIPTED";
            authorizeEndpointDataProviderScript?: "[Empty]" | string;
            evaluateScopeClass?: string;
            evaluateScopePluginType?: "JAVA" | "SCRIPTED";
            evaluateScopeScript?: "[Empty]" | string;
            oidcClaimsClass?: string;
            oidcClaimsPluginType?: string;
            oidcClaimsScript?: "[Empty]" | string;
            userCodeGeneratorClass?: string;
            validateScopeClass?: string;
            validateScopePluginType?: "JAVA" | "SCRIPTED";
            validateScopeScript?: "[Empty]" | string;
            [k: string]: string | number | boolean | object | string[];
        };
        [k: string]: string
        | number
        | boolean
        | object
        | string[];
    }

    Settings

    Member Visibility