/pkce.ts | oauth2_server@0.12.0

Module

x/oauth2_server/pkce.ts

A standards compliant implementation of an OAuth 2.0 authorization server with PKCE support.

udibo/oauth2_server

Latest

adapters examples grants models services

asserts.ts

assertAuthorizationCode

assertClientUserScopeCall

assertScope

assertToken

authorization_server.ts

AbstractAccessTokenService

AbstractAuthorizationCodeService

AbstractClientService

AbstractGrant

AbstractRefreshTokenService

AbstractUserService

AccessDeniedError

AuthorizationCodeGrant

AuthorizationServer

ClientCredentialsGrant

TemporarilyUnavailableError

UnauthorizedClientError

UnsupportedGrantTypeError

UnsupportedResponseTypeError

UnsupportedTokenTypeError

AccessToken

AuthorizationCode

AuthorizationCodeGrantInterface

AuthorizationCodeGrantOptions

AuthorizationCodeGrantServices

AuthorizationCodeServiceInterface

AuthorizationServerGrants

AuthorizationServerOptions

ClientCredentialsGrantInterface

ClientCredentialsGrantOptions

ClientCredentialsGrantServices

ClientInterface

ClientServiceInterface

ErrorBody

GenerateAuthorizationCodeOptions

OAuth2AuthenticatedRequest

OAuth2AuthorizedRequest

OAuth2AuthorizeRequest

OAuth2ErrorOptions

OAuth2Request

OAuth2Response

PKCEClientCredentials

RefreshToken

RefreshTokenGrantInterface

RefreshTokenGrantOptions

ResourceServerOptions

ResourceServerServices

TokenServiceInterface

OAuth2AuthenticatedRequest

OAuth2AuthorizedRequest

OAuth2AuthorizeRequest

TemporarilyUnavailableError

UnauthorizedClientError

UnsupportedGrantTypeError

UnsupportedResponseTypeError

UnsupportedTokenTypeError

AbstractAccessTokenService

AbstractClientService

AbstractRefreshTokenService

TemporarilyUnavailableError

UnauthorizedClientError

UnsupportedGrantTypeError

UnsupportedResponseTypeError

UnsupportedTokenTypeError

ClientServiceInterface

ErrorBody

LoginRedirectOptions

OAuth2AuthenticatedRequest

OAuth2AuthorizedRequest

OAuth2AuthorizeRequest

ResourceServerOptions

ResourceServerServices

TokenServiceInterface

Spy

spy

import * as oauth2Server from "https://deno.land/x/oauth2_server@0.12.0/pkce.ts";

Variables

challengeMethods

The default allowed PKCE code challenge methods. Clients SHOULD use PKCE code challenge methods that do not expose the PKCE verifier in the authorization request. Currently, "S256" is the only such method. https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-topics#section-2.1.1

Functions

generateCodeVerifier

Generates a random code verifier with a minimum of 256 bits of entropy. This is done by generating a random 32-octet sequence then base64url encoding it to produce a 43 octet URL safe string. https://datatracker.ietf.org/doc/html/rfc7636#section-7.1

Interfaces

ChallengeMethods

The allowed PKCE code challenge methods.

Type Aliases

ChallengeMethod

A challenge method used for PKCE. Transforms a verifier into a challenge.