Expand description
GNAP (Grant Negotiation and Authorization Protocol) implementation.
This module implements the GNAP specification (draft-ietf-gnap-core-protocol), providing an emerging next-generation alternative to OAuth 2.0 with stronger cryptographic binding and a unified request structure.
§Implemented Features
- Transaction lifecycle (create, continue, approve, deny)
- Client key binding via JWK (ES256, RS256, EdDSA)
- Interaction hash verification (draft §4.2.3)
- Continuation token rotation on each use
- Token management (revocation)
- Subject information responses
- Transaction expiration and cleanup
Structs§
- Gnap
Access Request - Description of a single access right being requested
- Gnap
Client Display - Gnap
Client Info - Gnap
Client Key - Client key with proof method (draft §7.1)
- Gnap
Config - Gnap
Interaction Finish - Gnap
Interaction Requirements - GnapJwk
- Minimal JWK representation sufficient for GNAP key binding
- Gnap
Service - Gnap
Subject Request - Subject information the client is requesting
- Gnap
Transaction Request - A GNAP transaction request representing the client’s intent
- Gnap
Transaction Request Builder - Builder for
GnapTransactionRequest.