import { type AuthorizationServer } from "https://deno.land/x/oauth4webapi@v2.8.0/mod.ts";
Authorization Server Metadata
Properties
URL of the authorization server's authorization endpoint.
URL of the authorization server's Dynamic Client Registration Endpoint.
JSON array containing a list of the scope values that this authorization server supports.
JSON array containing a list of the response_type values that this authorization server
supports.
JSON array containing a list of the response_mode values that this authorization server
supports.
JSON array containing a list of the grant_type values that this authorization server
supports.
JSON array containing a list of client authentication methods supported by this token endpoint.
JSON array containing a list of the JWS signing algorithms supported by the token endpoint for the signature on the JWT used to authenticate the client at the token endpoint.
URL of a page containing human-readable information that developers might want or need to know when using the authorization server.
Languages and scripts supported for the user interface, represented as a JSON array of language tag values from RFC 5646.
URL that the authorization server provides to the person registering the client to read about the authorization server's requirements on how the client can use the data provided by the authorization server.
URL that the authorization server provides to the person registering the client to read about the authorization server's terms of service.
JSON array containing a list of client authentication methods supported by this revocation endpoint.
JSON array containing a list of the JWS signing algorithms supported by the revocation endpoint for the signature on the JWT used to authenticate the client at the revocation endpoint.
URL of the authorization server's introspection endpoint.
JSON array containing a list of client authentication methods supported by this introspection endpoint.
JSON array containing a list of the JWS signing algorithms supported by the introspection endpoint for the signature on the JWT used to authenticate the client at the introspection endpoint.
PKCE code challenge methods supported by this authorization server.
Signed JWT containing metadata values about the authorization server as claims.
URL of the authorization server's device authorization endpoint.
Indicates authorization server support for mutual-TLS client certificate-bound access tokens.
JSON object containing alternative authorization server endpoints, which a client intending to do mutual TLS will use in preference to the conventional endpoints.
JSON array containing a list of the Authentication Context Class References that this authorization server supports.
JSON array containing a list of the Subject Identifier types that this authorization server supports.
JSON array containing a list of the JWS alg values supported by the authorization server for
the ID Token.
JSON array containing a list of the JWE alg values supported by the authorization server for
the ID Token.
JSON array containing a list of the JWE enc values supported by the authorization server for
the ID Token.
JSON array containing a list of the JWS alg values supported by the UserInfo Endpoint.
JSON array containing a list of the JWE alg values supported by the UserInfo Endpoint.
JSON array containing a list of the JWE enc values supported by the UserInfo Endpoint.
JSON array containing a list of the JWS alg values supported by the authorization server for
Request Objects.
JSON array containing a list of the JWE alg values supported by the authorization server for
Request Objects.
JSON array containing a list of the JWE enc values supported by the authorization server for
Request Objects.
JSON array containing a list of the display parameter values that the authorization server
supports.
JSON array containing a list of the Claim Types that the authorization server supports.
JSON array containing a list of the Claim Names of the Claims that the authorization server MAY be able to supply values for.
Languages and scripts supported for values in Claims being returned, represented as a JSON array of RFC 5646 language tag values.
Boolean value specifying whether the authorization server supports use of the claims
parameter.
Boolean value specifying whether the authorization server supports use of the request
parameter.
Boolean value specifying whether the authorization server supports use of the request_uri
parameter.
Boolean value specifying whether the authorization server requires any request_uri values
used to be pre-registered.
Indicates where authorization request needs to be protected as Request Object and provided
through either request or request_uri parameter.
URL of the authorization server's pushed authorization request endpoint.
Indicates whether the authorization server accepts authorization requests only via PAR.
JSON array containing a list of algorithms supported by the authorization server for introspection response signing.
JSON array containing a list of algorithms supported by the authorization server for
introspection response content key encryption (alg value).
JSON array containing a list of algorithms supported by the authorization server for
introspection response content encryption (enc value).
Boolean value indicating whether the authorization server provides the iss parameter in the
authorization response.
JSON array containing a list of algorithms supported by the authorization server for introspection response signing.
JSON array containing a list of algorithms supported by the authorization server for
introspection response encryption (alg value).
JSON array containing a list of algorithms supported by the authorization server for
introspection response encryption (enc value).
CIBA Backchannel Authentication Endpoint.
JSON array containing a list of the JWS signing algorithms supported for validation of signed CIBA authentication requests.
Supported CIBA authentication result delivery modes.
Indicates whether the authorization server supports the use of the CIBA user_code parameter.
URL of an authorization server iframe that supports cross-origin communications for session state information with the RP Client, using the HTML5 postMessage API.
JSON array containing a list of the JWS algorithms supported for DPoP proof JWTs.
URL at the authorization server to which an RP can perform a redirect to request that the End-User be logged out at the authorization server.
Boolean value specifying whether the authorization server can pass iss (issuer) and sid
(session ID) query parameters to identify the RP session with the authorization server when the
frontchannel_logout_uri is used.
Boolean value specifying whether the authorization server supports HTTP-based logout.
Boolean value specifying whether the authorization server can pass a sid (session ID) Claim
in the Logout Token to identify the RP session with the OP.