authlete 1.6.0 → 1.10.0
Sign up to get free protection for your applications and to get access to all the features.
- checksums.yaml +5 -5
- data/authlete.gemspec +2 -2
- data/lib/authlete/model/client.rb +163 -145
- data/lib/authlete/model/hsk.rb +67 -0
- data/lib/authlete/model/service.rb +264 -219
- data/lib/authlete/version.rb +1 -1
- data/lib/authlete.rb +1 -0
- data/test/authlete/model/test_client.rb +416 -401
- data/test/authlete/model/test_hsk.rb +108 -0
- data/test/authlete/model/test_service.rb +511 -459
- metadata +14 -12
|
@@ -445,232 +445,277 @@ module Authlete
|
|
|
445
445
|
alias_method :token_expiration_linked, :tokenExpirationLinked
|
|
446
446
|
alias_method :token_expiration_linked=, :tokenExpirationLinked=
|
|
447
447
|
|
|
448
|
+
attr_accessor :frontChannelRequestObjectEncryptionRequired
|
|
449
|
+
alias_method :front_channel_request_object_encryption_required, :frontChannelRequestObjectEncryptionRequired
|
|
450
|
+
alias_method :front_channel_request_object_encryption_required=, :frontChannelRequestObjectEncryptionRequired=
|
|
451
|
+
|
|
452
|
+
attr_accessor :requestObjectEncryptionAlgMatchRequired
|
|
453
|
+
alias_method :request_object_encryption_alg_match_required, :requestObjectEncryptionAlgMatchRequired
|
|
454
|
+
alias_method :request_object_encryption_alg_match_required=, :requestObjectEncryptionAlgMatchRequired=
|
|
455
|
+
|
|
456
|
+
attr_accessor :requestObjectEncryptionEncMatchRequired
|
|
457
|
+
alias_method :request_object_encryption_enc_match_required, :requestObjectEncryptionEncMatchRequired
|
|
458
|
+
alias_method :request_object_encryption_enc_match_required=, :requestObjectEncryptionEncMatchRequired=
|
|
459
|
+
|
|
460
|
+
attr_accessor :hsks
|
|
461
|
+
|
|
462
|
+
attr_accessor :hsmEnabled
|
|
463
|
+
alias_method :hsm_enabled, :hsmEnabled
|
|
464
|
+
alias_method :hsm_enabled=, :hsmEnabled=
|
|
465
|
+
|
|
466
|
+
attr_accessor :refreshTokenDurationReset
|
|
467
|
+
alias_method :refresh_token_duration_reset, :refreshTokenDurationReset
|
|
468
|
+
alias_method :refresh_token_duration_reset=, :refreshTokenDurationReset=
|
|
469
|
+
|
|
470
|
+
attr_accessor :grantManagementEndpoint
|
|
471
|
+
alias_method :grant_management_endpoint, :grantManagementEndpoint
|
|
472
|
+
alias_method :grant_management_endpoint=, :grantManagementEndpoint=
|
|
473
|
+
|
|
474
|
+
attr_accessor :grantManagementActionRequired
|
|
475
|
+
alias_method :grant_management_action_required, :grantManagementActionRequired
|
|
476
|
+
alias_method :grant_management_action_required=, :grantManagementActionRequired=
|
|
448
477
|
private
|
|
449
478
|
|
|
450
479
|
def defaults
|
|
451
480
|
{
|
|
452
|
-
number:
|
|
453
|
-
serviceOwnerNumber:
|
|
454
|
-
serviceName:
|
|
455
|
-
apiKey:
|
|
456
|
-
apiSecret:
|
|
457
|
-
issuer:
|
|
458
|
-
authorizationEndpoint:
|
|
459
|
-
tokenEndpoint:
|
|
460
|
-
revocationEndpoint:
|
|
461
|
-
supportedRevocationAuthMethods:
|
|
462
|
-
userInfoEndpoint:
|
|
463
|
-
jwksUri:
|
|
464
|
-
jwks:
|
|
465
|
-
registrationEndpoint:
|
|
466
|
-
registrationManagementEndpoint:
|
|
467
|
-
supportedScopes:
|
|
468
|
-
supportedResponseTypes:
|
|
469
|
-
supportedGrantTypes:
|
|
470
|
-
supportedAcrs:
|
|
471
|
-
supportedTokenAuthMethods:
|
|
472
|
-
supportedDisplays:
|
|
473
|
-
supportedClaimTypes:
|
|
474
|
-
supportedClaims:
|
|
475
|
-
serviceDocumentation:
|
|
476
|
-
supportedClaimLocales:
|
|
477
|
-
supportedUiLocales:
|
|
478
|
-
policyUri:
|
|
479
|
-
tosUri:
|
|
480
|
-
authenticationCallbackEndpoint:
|
|
481
|
-
authenticationCallbackApiKey:
|
|
482
|
-
authenticationCallbackApiSecret:
|
|
483
|
-
supportedSnses:
|
|
484
|
-
snsCredentials:
|
|
485
|
-
createdAt:
|
|
486
|
-
modifiedAt:
|
|
487
|
-
developerAuthenticationCallbackEndpoint:
|
|
488
|
-
developerAuthenticationCallbackApiKey:
|
|
489
|
-
developerAuthenticationCallbackApiSecret:
|
|
490
|
-
supportedDeveloperSnses:
|
|
491
|
-
developerSnsCredentials:
|
|
492
|
-
clientsPerDeveloper:
|
|
493
|
-
directAuthorizationEndpointEnabled:
|
|
494
|
-
directTokenEndpointEnabled:
|
|
495
|
-
directRevocationEndpointEnabled:
|
|
496
|
-
directUserInfoEndpointEnabled:
|
|
497
|
-
directJwksEndpointEnabled:
|
|
498
|
-
directIntrospectionEndpointEnabled:
|
|
499
|
-
singleAccessTokenPerSubject:
|
|
500
|
-
pkceRequired:
|
|
501
|
-
pkceS256Required:
|
|
502
|
-
refreshTokenKept:
|
|
503
|
-
refreshTokenDurationKept:
|
|
504
|
-
errorDescriptionOmitted:
|
|
505
|
-
errorUriOmitted:
|
|
506
|
-
clientIdAliasEnabled:
|
|
507
|
-
supportedServiceProfiles:
|
|
508
|
-
tlsClientCertificateBoundAccessTokens:
|
|
509
|
-
introspectionEndpoint:
|
|
510
|
-
supportedIntrospectionAuthMethods:
|
|
511
|
-
mutualTlsValidatePkiCertChain:
|
|
512
|
-
trustedRootCertificates:
|
|
513
|
-
dynamicRegistrationSupported:
|
|
514
|
-
endSessionEndpoint:
|
|
515
|
-
description:
|
|
516
|
-
accessTokenType:
|
|
517
|
-
accessTokenSignAlg:
|
|
518
|
-
accessTokenDuration:
|
|
519
|
-
refreshTokenDuration:
|
|
520
|
-
idTokenDuration:
|
|
521
|
-
authorizationResponseDuration:
|
|
522
|
-
pushedAuthReqDuration:
|
|
523
|
-
metadata:
|
|
524
|
-
accessTokenSignatureKeyId:
|
|
525
|
-
authorizationSignatureKeyId:
|
|
526
|
-
idTokenSignatureKeyId:
|
|
527
|
-
userInfoSignatureKeyId:
|
|
528
|
-
supportedBackchannelTokenDeliveryModes:
|
|
529
|
-
backchannelAuthenticationEndpoint:
|
|
530
|
-
backchannelUserCodeParameterSupported:
|
|
531
|
-
backchannelAuthReqIdDuration:
|
|
532
|
-
backchannelPollingInterval:
|
|
533
|
-
backchannelBindingMessageRequiredInFapi:
|
|
534
|
-
allowableClockSkew:
|
|
535
|
-
deviceAuthorizationEndpoint:
|
|
536
|
-
deviceVerificationUri:
|
|
537
|
-
deviceVerificationUriComplete:
|
|
538
|
-
deviceFlowCodeDuration:
|
|
539
|
-
deviceFlowPollingInterval:
|
|
540
|
-
userCodeCharset:
|
|
541
|
-
userCodeLength:
|
|
542
|
-
pushedAuthReqEndpoint:
|
|
543
|
-
mtlsEndpointAliases:
|
|
544
|
-
supportedAuthorizationDetailsTypes:
|
|
545
|
-
supportedTrustFrameworks:
|
|
546
|
-
supportedEvidence:
|
|
547
|
-
supportedIdentityDocuments:
|
|
548
|
-
supportedVerificationMethods:
|
|
549
|
-
supportedVerifiedClaims:
|
|
550
|
-
missingClientIdAllowed:
|
|
551
|
-
parRequired:
|
|
552
|
-
requestObjectRequired:
|
|
553
|
-
traditionalRequestObjectProcessingApplied:
|
|
554
|
-
claimShortcutRestrictive:
|
|
555
|
-
scopeRequired:
|
|
556
|
-
nbfOptional:
|
|
557
|
-
issSuppressed:
|
|
558
|
-
attributes:
|
|
559
|
-
supportedCustomClientMetadata:
|
|
560
|
-
tokenExpirationLinked:
|
|
481
|
+
number: 0,
|
|
482
|
+
serviceOwnerNumber: 0,
|
|
483
|
+
serviceName: nil,
|
|
484
|
+
apiKey: 0,
|
|
485
|
+
apiSecret: nil,
|
|
486
|
+
issuer: nil,
|
|
487
|
+
authorizationEndpoint: nil,
|
|
488
|
+
tokenEndpoint: nil,
|
|
489
|
+
revocationEndpoint: nil,
|
|
490
|
+
supportedRevocationAuthMethods: nil,
|
|
491
|
+
userInfoEndpoint: nil,
|
|
492
|
+
jwksUri: nil,
|
|
493
|
+
jwks: nil,
|
|
494
|
+
registrationEndpoint: nil,
|
|
495
|
+
registrationManagementEndpoint: nil,
|
|
496
|
+
supportedScopes: nil,
|
|
497
|
+
supportedResponseTypes: nil,
|
|
498
|
+
supportedGrantTypes: nil,
|
|
499
|
+
supportedAcrs: nil,
|
|
500
|
+
supportedTokenAuthMethods: nil,
|
|
501
|
+
supportedDisplays: nil,
|
|
502
|
+
supportedClaimTypes: nil,
|
|
503
|
+
supportedClaims: nil,
|
|
504
|
+
serviceDocumentation: nil,
|
|
505
|
+
supportedClaimLocales: nil,
|
|
506
|
+
supportedUiLocales: nil,
|
|
507
|
+
policyUri: nil,
|
|
508
|
+
tosUri: nil,
|
|
509
|
+
authenticationCallbackEndpoint: nil,
|
|
510
|
+
authenticationCallbackApiKey: nil,
|
|
511
|
+
authenticationCallbackApiSecret: nil,
|
|
512
|
+
supportedSnses: nil,
|
|
513
|
+
snsCredentials: nil,
|
|
514
|
+
createdAt: 0,
|
|
515
|
+
modifiedAt: 0,
|
|
516
|
+
developerAuthenticationCallbackEndpoint: nil,
|
|
517
|
+
developerAuthenticationCallbackApiKey: nil,
|
|
518
|
+
developerAuthenticationCallbackApiSecret: nil,
|
|
519
|
+
supportedDeveloperSnses: nil,
|
|
520
|
+
developerSnsCredentials: nil,
|
|
521
|
+
clientsPerDeveloper: 0,
|
|
522
|
+
directAuthorizationEndpointEnabled: false,
|
|
523
|
+
directTokenEndpointEnabled: false,
|
|
524
|
+
directRevocationEndpointEnabled: false,
|
|
525
|
+
directUserInfoEndpointEnabled: false,
|
|
526
|
+
directJwksEndpointEnabled: false,
|
|
527
|
+
directIntrospectionEndpointEnabled: false,
|
|
528
|
+
singleAccessTokenPerSubject: false,
|
|
529
|
+
pkceRequired: false,
|
|
530
|
+
pkceS256Required: false,
|
|
531
|
+
refreshTokenKept: false,
|
|
532
|
+
refreshTokenDurationKept: false,
|
|
533
|
+
errorDescriptionOmitted: false,
|
|
534
|
+
errorUriOmitted: false,
|
|
535
|
+
clientIdAliasEnabled: false,
|
|
536
|
+
supportedServiceProfiles: nil,
|
|
537
|
+
tlsClientCertificateBoundAccessTokens: false,
|
|
538
|
+
introspectionEndpoint: nil,
|
|
539
|
+
supportedIntrospectionAuthMethods: nil,
|
|
540
|
+
mutualTlsValidatePkiCertChain: false,
|
|
541
|
+
trustedRootCertificates: nil,
|
|
542
|
+
dynamicRegistrationSupported: false,
|
|
543
|
+
endSessionEndpoint: nil,
|
|
544
|
+
description: nil,
|
|
545
|
+
accessTokenType: nil,
|
|
546
|
+
accessTokenSignAlg: nil,
|
|
547
|
+
accessTokenDuration: 0,
|
|
548
|
+
refreshTokenDuration: 0,
|
|
549
|
+
idTokenDuration: 0,
|
|
550
|
+
authorizationResponseDuration: 0,
|
|
551
|
+
pushedAuthReqDuration: 0,
|
|
552
|
+
metadata: nil,
|
|
553
|
+
accessTokenSignatureKeyId: nil,
|
|
554
|
+
authorizationSignatureKeyId: nil,
|
|
555
|
+
idTokenSignatureKeyId: nil,
|
|
556
|
+
userInfoSignatureKeyId: nil,
|
|
557
|
+
supportedBackchannelTokenDeliveryModes: nil,
|
|
558
|
+
backchannelAuthenticationEndpoint: nil,
|
|
559
|
+
backchannelUserCodeParameterSupported: false,
|
|
560
|
+
backchannelAuthReqIdDuration: 0,
|
|
561
|
+
backchannelPollingInterval: 0,
|
|
562
|
+
backchannelBindingMessageRequiredInFapi: false,
|
|
563
|
+
allowableClockSkew: 0,
|
|
564
|
+
deviceAuthorizationEndpoint: nil,
|
|
565
|
+
deviceVerificationUri: nil,
|
|
566
|
+
deviceVerificationUriComplete: nil,
|
|
567
|
+
deviceFlowCodeDuration: 0,
|
|
568
|
+
deviceFlowPollingInterval: 0,
|
|
569
|
+
userCodeCharset: nil,
|
|
570
|
+
userCodeLength: 0,
|
|
571
|
+
pushedAuthReqEndpoint: nil,
|
|
572
|
+
mtlsEndpointAliases: nil,
|
|
573
|
+
supportedAuthorizationDetailsTypes: nil,
|
|
574
|
+
supportedTrustFrameworks: nil,
|
|
575
|
+
supportedEvidence: nil,
|
|
576
|
+
supportedIdentityDocuments: nil,
|
|
577
|
+
supportedVerificationMethods: nil,
|
|
578
|
+
supportedVerifiedClaims: nil,
|
|
579
|
+
missingClientIdAllowed: false,
|
|
580
|
+
parRequired: false,
|
|
581
|
+
requestObjectRequired: false,
|
|
582
|
+
traditionalRequestObjectProcessingApplied: false,
|
|
583
|
+
claimShortcutRestrictive: false,
|
|
584
|
+
scopeRequired: false,
|
|
585
|
+
nbfOptional: false,
|
|
586
|
+
issSuppressed: false,
|
|
587
|
+
attributes: nil,
|
|
588
|
+
supportedCustomClientMetadata: nil,
|
|
589
|
+
tokenExpirationLinked: false,
|
|
590
|
+
frontChannelRequestObjectEncryptionRequired: false,
|
|
591
|
+
requestObjectEncryptionAlgMatchRequired: false,
|
|
592
|
+
requestObjectEncryptionEncMatchRequired: false,
|
|
593
|
+
hsks: nil,
|
|
594
|
+
hsmEnabled: false,
|
|
595
|
+
refreshTokenDurationReset: false,
|
|
596
|
+
grantManagementEndpoint: nil,
|
|
597
|
+
grantManagementActionRequired: false,
|
|
561
598
|
}
|
|
562
599
|
end
|
|
563
600
|
|
|
564
601
|
def set_params(hash)
|
|
565
|
-
@number
|
|
566
|
-
@serviceOwnerNumber
|
|
567
|
-
@serviceName
|
|
568
|
-
@apiKey
|
|
569
|
-
@apiSecret
|
|
570
|
-
@issuer
|
|
571
|
-
@authorizationEndpoint
|
|
572
|
-
@tokenEndpoint
|
|
573
|
-
@revocationEndpoint
|
|
574
|
-
@supportedRevocationAuthMethods
|
|
575
|
-
@userInfoEndpoint
|
|
576
|
-
@jwksUri
|
|
577
|
-
@jwks
|
|
578
|
-
@registrationEndpoint
|
|
579
|
-
@registrationManagementEndpoint
|
|
580
|
-
@supportedScopes
|
|
581
|
-
@supportedResponseTypes
|
|
582
|
-
@supportedGrantTypes
|
|
583
|
-
@supportedAcrs
|
|
584
|
-
@supportedTokenAuthMethods
|
|
585
|
-
@supportedDisplays
|
|
586
|
-
@supportedClaimTypes
|
|
587
|
-
@supportedClaims
|
|
588
|
-
@serviceDocumentation
|
|
589
|
-
@supportedClaimLocales
|
|
590
|
-
@supportedUiLocales
|
|
591
|
-
@policyUri
|
|
592
|
-
@tosUri
|
|
593
|
-
@authenticationCallbackEndpoint
|
|
594
|
-
@authenticationCallbackApiKey
|
|
595
|
-
@authenticationCallbackApiSecret
|
|
596
|
-
@supportedSnses
|
|
597
|
-
@snsCredentials
|
|
598
|
-
@createdAt
|
|
599
|
-
@modifiedAt
|
|
600
|
-
@developerAuthenticationCallbackEndpoint
|
|
601
|
-
@developerAuthenticationCallbackApiKey
|
|
602
|
-
@developerAuthenticationCallbackApiSecret
|
|
603
|
-
@supportedDeveloperSnses
|
|
604
|
-
@developerSnsCredentials
|
|
605
|
-
@clientsPerDeveloper
|
|
606
|
-
@directAuthorizationEndpointEnabled
|
|
607
|
-
@directTokenEndpointEnabled
|
|
608
|
-
@directRevocationEndpointEnabled
|
|
609
|
-
@directUserInfoEndpointEnabled
|
|
610
|
-
@directJwksEndpointEnabled
|
|
611
|
-
@directIntrospectionEndpointEnabled
|
|
612
|
-
@singleAccessTokenPerSubject
|
|
613
|
-
@pkceRequired
|
|
614
|
-
@pkceS256Required
|
|
615
|
-
@refreshTokenKept
|
|
616
|
-
@refreshTokenDurationKept
|
|
617
|
-
@errorDescriptionOmitted
|
|
618
|
-
@errorUriOmitted
|
|
619
|
-
@clientIdAliasEnabled
|
|
620
|
-
@supportedServiceProfiles
|
|
621
|
-
@tlsClientCertificateBoundAccessTokens
|
|
622
|
-
@introspectionEndpoint
|
|
623
|
-
@supportedIntrospectionAuthMethods
|
|
624
|
-
@mutualTlsValidatePkiCertChain
|
|
625
|
-
@trustedRootCertificates
|
|
626
|
-
@dynamicRegistrationSupported
|
|
627
|
-
@endSessionEndpoint
|
|
628
|
-
@description
|
|
629
|
-
@accessTokenType
|
|
630
|
-
@accessTokenSignAlg
|
|
631
|
-
@accessTokenDuration
|
|
632
|
-
@refreshTokenDuration
|
|
633
|
-
@idTokenDuration
|
|
634
|
-
@authorizationResponseDuration
|
|
635
|
-
@pushedAuthReqDuration
|
|
636
|
-
@metadata
|
|
637
|
-
@accessTokenSignatureKeyId
|
|
638
|
-
@authorizationSignatureKeyId
|
|
639
|
-
@idTokenSignatureKeyId
|
|
640
|
-
@userInfoSignatureKeyId
|
|
641
|
-
@supportedBackchannelTokenDeliveryModes
|
|
642
|
-
@backchannelAuthenticationEndpoint
|
|
643
|
-
@backchannelUserCodeParameterSupported
|
|
644
|
-
@backchannelAuthReqIdDuration
|
|
645
|
-
@backchannelPollingInterval
|
|
646
|
-
@backchannelBindingMessageRequiredInFapi
|
|
647
|
-
@allowableClockSkew
|
|
648
|
-
@deviceAuthorizationEndpoint
|
|
649
|
-
@deviceVerificationUri
|
|
650
|
-
@deviceVerificationUriComplete
|
|
651
|
-
@deviceFlowCodeDuration
|
|
652
|
-
@deviceFlowPollingInterval
|
|
653
|
-
@userCodeCharset
|
|
654
|
-
@userCodeLength
|
|
655
|
-
@pushedAuthReqEndpoint
|
|
656
|
-
@mtlsEndpointAliases
|
|
657
|
-
@supportedAuthorizationDetailsTypes
|
|
658
|
-
@supportedTrustFrameworks
|
|
659
|
-
@supportedEvidence
|
|
660
|
-
@supportedIdentityDocuments
|
|
661
|
-
@supportedVerificationMethods
|
|
662
|
-
@supportedVerifiedClaims
|
|
663
|
-
@missingClientIdAllowed
|
|
664
|
-
@parRequired
|
|
665
|
-
@requestObjectRequired
|
|
666
|
-
@traditionalRequestObjectProcessingApplied
|
|
667
|
-
@claimShortcutRestrictive
|
|
668
|
-
@scopeRequired
|
|
669
|
-
@nbfOptional
|
|
670
|
-
@issSuppressed
|
|
671
|
-
@attributes
|
|
672
|
-
@supportedCustomClientMetadata
|
|
673
|
-
@tokenExpirationLinked
|
|
602
|
+
@number = hash[:number]
|
|
603
|
+
@serviceOwnerNumber = hash[:serviceOwnerNumber]
|
|
604
|
+
@serviceName = hash[:serviceName]
|
|
605
|
+
@apiKey = hash[:apiKey]
|
|
606
|
+
@apiSecret = hash[:apiSecret]
|
|
607
|
+
@issuer = hash[:issuer]
|
|
608
|
+
@authorizationEndpoint = hash[:authorizationEndpoint]
|
|
609
|
+
@tokenEndpoint = hash[:tokenEndpoint]
|
|
610
|
+
@revocationEndpoint = hash[:revocationEndpoint]
|
|
611
|
+
@supportedRevocationAuthMethods = hash[:supportedRevocationAuthMethods]
|
|
612
|
+
@userInfoEndpoint = hash[:userInfoEndpoint]
|
|
613
|
+
@jwksUri = hash[:jwksUri]
|
|
614
|
+
@jwks = hash[:jwks]
|
|
615
|
+
@registrationEndpoint = hash[:registrationEndpoint]
|
|
616
|
+
@registrationManagementEndpoint = hash[:registrationManagementEndpoint]
|
|
617
|
+
@supportedScopes = get_parsed_array(hash[:supportedScopes]) { |e| Authlete::Model::Scope.parse(e) }
|
|
618
|
+
@supportedResponseTypes = hash[:supportedResponseTypes]
|
|
619
|
+
@supportedGrantTypes = hash[:supportedGrantTypes]
|
|
620
|
+
@supportedAcrs = hash[:supportedAcrs]
|
|
621
|
+
@supportedTokenAuthMethods = hash[:supportedTokenAuthMethods]
|
|
622
|
+
@supportedDisplays = hash[:supportedDisplays]
|
|
623
|
+
@supportedClaimTypes = hash[:supportedClaimTypes]
|
|
624
|
+
@supportedClaims = hash[:supportedClaims]
|
|
625
|
+
@serviceDocumentation = hash[:serviceDocumentation]
|
|
626
|
+
@supportedClaimLocales = hash[:supportedClaimLocales]
|
|
627
|
+
@supportedUiLocales = hash[:supportedUiLocales]
|
|
628
|
+
@policyUri = hash[:policyUri]
|
|
629
|
+
@tosUri = hash[:tosUri]
|
|
630
|
+
@authenticationCallbackEndpoint = hash[:authenticationCallbackEndpoint]
|
|
631
|
+
@authenticationCallbackApiKey = hash[:authenticationCallbackApiKey]
|
|
632
|
+
@authenticationCallbackApiSecret = hash[:authenticationCallbackApiSecret]
|
|
633
|
+
@supportedSnses = hash[:supportedSnses]
|
|
634
|
+
@snsCredentials = get_parsed_array(hash[:snsCredentials]) { |e| Authlete::Model::SnsCredentials.parse(e) }
|
|
635
|
+
@createdAt = hash[:createdAt]
|
|
636
|
+
@modifiedAt = hash[:modifiedAt]
|
|
637
|
+
@developerAuthenticationCallbackEndpoint = hash[:developerAuthenticationCallbackEndpoint]
|
|
638
|
+
@developerAuthenticationCallbackApiKey = hash[:developerAuthenticationCallbackApiKey]
|
|
639
|
+
@developerAuthenticationCallbackApiSecret = hash[:developerAuthenticationCallbackApiSecret]
|
|
640
|
+
@supportedDeveloperSnses = hash[:supportedDeveloperSnses]
|
|
641
|
+
@developerSnsCredentials = get_parsed_array(hash[:developerSnsCredentials]) { |e| Authlete::Model::SnsCredentials.parse(e) }
|
|
642
|
+
@clientsPerDeveloper = hash[:clientsPerDeveloper]
|
|
643
|
+
@directAuthorizationEndpointEnabled = hash[:directAuthorizationEndpointEnabled]
|
|
644
|
+
@directTokenEndpointEnabled = hash[:directTokenEndpointEnabled]
|
|
645
|
+
@directRevocationEndpointEnabled = hash[:directRevocationEndpointEnabled]
|
|
646
|
+
@directUserInfoEndpointEnabled = hash[:directUserInfoEndpointEnabled]
|
|
647
|
+
@directJwksEndpointEnabled = hash[:directJwksEndpointEnabled]
|
|
648
|
+
@directIntrospectionEndpointEnabled = hash[:directIntrospectionEndpointEnabled]
|
|
649
|
+
@singleAccessTokenPerSubject = hash[:singleAccessTokenPerSubject]
|
|
650
|
+
@pkceRequired = hash[:pkceRequired]
|
|
651
|
+
@pkceS256Required = hash[:pkceS256Required]
|
|
652
|
+
@refreshTokenKept = hash[:refreshTokenKept]
|
|
653
|
+
@refreshTokenDurationKept = hash[:refreshTokenDurationKept]
|
|
654
|
+
@errorDescriptionOmitted = hash[:errorDescriptionOmitted]
|
|
655
|
+
@errorUriOmitted = hash[:errorUriOmitted]
|
|
656
|
+
@clientIdAliasEnabled = hash[:clientIdAliasEnabled]
|
|
657
|
+
@supportedServiceProfiles = hash[:supportedServiceProfiles]
|
|
658
|
+
@tlsClientCertificateBoundAccessTokens = hash[:tlsClientCertificateBoundAccessTokens]
|
|
659
|
+
@introspectionEndpoint = hash[:introspectionEndpoint]
|
|
660
|
+
@supportedIntrospectionAuthMethods = hash[:supportedIntrospectionAuthMethods]
|
|
661
|
+
@mutualTlsValidatePkiCertChain = hash[:mutualTlsValidatePkiCertChain]
|
|
662
|
+
@trustedRootCertificates = hash[:trustedRootCertificates]
|
|
663
|
+
@dynamicRegistrationSupported = hash[:dynamicRegistrationSupported]
|
|
664
|
+
@endSessionEndpoint = hash[:endSessionEndpoint]
|
|
665
|
+
@description = hash[:description]
|
|
666
|
+
@accessTokenType = hash[:accessTokenType]
|
|
667
|
+
@accessTokenSignAlg = hash[:accessTokenSignAlg]
|
|
668
|
+
@accessTokenDuration = hash[:accessTokenDuration]
|
|
669
|
+
@refreshTokenDuration = hash[:refreshTokenDuration]
|
|
670
|
+
@idTokenDuration = hash[:idTokenDuration]
|
|
671
|
+
@authorizationResponseDuration = hash[:authorizationResponseDuration]
|
|
672
|
+
@pushedAuthReqDuration = hash[:pushedAuthReqDuration]
|
|
673
|
+
@metadata = get_parsed_array(hash[:metadata]) { |e| Authlete::Model::Pair.parse(e) }
|
|
674
|
+
@accessTokenSignatureKeyId = hash[:accessTokenSignatureKeyId]
|
|
675
|
+
@authorizationSignatureKeyId = hash[:authorizationSignatureKeyId]
|
|
676
|
+
@idTokenSignatureKeyId = hash[:idTokenSignatureKeyId]
|
|
677
|
+
@userInfoSignatureKeyId = hash[:userInfoSignatureKeyId]
|
|
678
|
+
@supportedBackchannelTokenDeliveryModes = hash[:supportedBackchannelTokenDeliveryModes]
|
|
679
|
+
@backchannelAuthenticationEndpoint = hash[:backchannelAuthenticationEndpoint]
|
|
680
|
+
@backchannelUserCodeParameterSupported = hash[:backchannelUserCodeParameterSupported]
|
|
681
|
+
@backchannelAuthReqIdDuration = hash[:backchannelAuthReqIdDuration]
|
|
682
|
+
@backchannelPollingInterval = hash[:backchannelPollingInterval]
|
|
683
|
+
@backchannelBindingMessageRequiredInFapi = hash[:backchannelBindingMessageRequiredInFapi]
|
|
684
|
+
@allowableClockSkew = hash[:allowableClockSkew]
|
|
685
|
+
@deviceAuthorizationEndpoint = hash[:deviceAuthorizationEndpoint]
|
|
686
|
+
@deviceVerificationUri = hash[:deviceVerificationUri]
|
|
687
|
+
@deviceVerificationUriComplete = hash[:deviceVerificationUriComplete]
|
|
688
|
+
@deviceFlowCodeDuration = hash[:deviceFlowCodeDuration]
|
|
689
|
+
@deviceFlowPollingInterval = hash[:deviceFlowPollingInterval]
|
|
690
|
+
@userCodeCharset = hash[:userCodeCharset]
|
|
691
|
+
@userCodeLength = hash[:userCodeLength]
|
|
692
|
+
@pushedAuthReqEndpoint = hash[:pushedAuthReqEndpoint]
|
|
693
|
+
@mtlsEndpointAliases = get_parsed_array(hash[:mtlsEndpointAliases]) { |e| Authlete::Model::NamedUri.parse(e) }
|
|
694
|
+
@supportedAuthorizationDetailsTypes = hash[:supportedAuthorizationDetailsTypes]
|
|
695
|
+
@supportedTrustFrameworks = hash[:supportedTrustFrameworks]
|
|
696
|
+
@supportedEvidence = hash[:supportedEvidence]
|
|
697
|
+
@supportedIdentityDocuments = hash[:supportedIdentityDocuments]
|
|
698
|
+
@supportedVerificationMethods = hash[:supportedVerificationMethods]
|
|
699
|
+
@supportedVerifiedClaims = hash[:supportedVerifiedClaims]
|
|
700
|
+
@missingClientIdAllowed = hash[:missingClientIdAllowed]
|
|
701
|
+
@parRequired = hash[:parRequired]
|
|
702
|
+
@requestObjectRequired = hash[:requestObjectRequired]
|
|
703
|
+
@traditionalRequestObjectProcessingApplied = hash[:traditionalRequestObjectProcessingApplied]
|
|
704
|
+
@claimShortcutRestrictive = hash[:claimShortcutRestrictive]
|
|
705
|
+
@scopeRequired = hash[:scopeRequired]
|
|
706
|
+
@nbfOptional = hash[:nbfOptional]
|
|
707
|
+
@issSuppressed = hash[:issSuppressed]
|
|
708
|
+
@attributes = get_parsed_array(hash[:attributes]) { |e| Authlete::Model::Pair.parse(e) }
|
|
709
|
+
@supportedCustomClientMetadata = hash[:supportedCustomClientMetadata]
|
|
710
|
+
@tokenExpirationLinked = hash[:tokenExpirationLinked]
|
|
711
|
+
@frontChannelRequestObjectEncryptionRequired = hash[:frontChannelRequestObjectEncryptionRequired]
|
|
712
|
+
@requestObjectEncryptionAlgMatchRequired = hash[:requestObjectEncryptionAlgMatchRequired]
|
|
713
|
+
@requestObjectEncryptionEncMatchRequired = hash[:requestObjectEncryptionEncMatchRequired]
|
|
714
|
+
@hsks = get_parsed_array(hash[:hsks]) { |e| Authlete::Model::Hsk.parse(e) }
|
|
715
|
+
@hsmEnabled = hash[:hsmEnabled]
|
|
716
|
+
@refreshTokenDurationReset = hash[:refreshTokenDurationReset]
|
|
717
|
+
@grantManagementEndpoint = hash[:grantManagementEndpoint]
|
|
718
|
+
@grantManagementActionRequired = hash[:grantManagementActionRequired]
|
|
674
719
|
end
|
|
675
720
|
|
|
676
721
|
def to_hash_value(key, var)
|
|
@@ -678,7 +723,7 @@ module Authlete
|
|
|
678
723
|
|
|
679
724
|
case key
|
|
680
725
|
when :snsCredentials, :developerSnsCredentials, :supportedScopes,
|
|
681
|
-
:metadata, :mtlsEndpointAliases, :attributes
|
|
726
|
+
:metadata, :mtlsEndpointAliases, :attributes, :hsks
|
|
682
727
|
raw_val&.map { |e| e.to_hash }
|
|
683
728
|
else
|
|
684
729
|
raw_val
|
data/lib/authlete/version.rb
CHANGED
data/lib/authlete.rb
CHANGED
|
@@ -39,6 +39,7 @@ module Authlete
|
|
|
39
39
|
autoload :SnsCredentials, 'authlete/model/sns-credentials'
|
|
40
40
|
autoload :TaggedValue, 'authlete/model/tagged-value'
|
|
41
41
|
autoload :NamedUri, 'authlete/model/named-uri'
|
|
42
|
+
autoload :Hsk, 'authlete/model/hsk'
|
|
42
43
|
|
|
43
44
|
module Request
|
|
44
45
|
autoload :AuthenticationCallbackRequest, 'authlete/model/request/authentication-callback-request'
|