Function openid::provider::microsoft::validate_token [−][src]
pub fn validate_token<C: CompactJson + Claims, P: Provider + Configurable>(
client: &Client<P, C>,
token: &IdToken<C>,
nonce: Option<&str>,
max_age: Option<&Duration>
) -> Result<(), Error>
Validate a decoded token for Microsoft OpenID. If you don’t get an error, its valid! Nonce and max_age come from your auth_uri options. Errors are:
- Jose Error if the Token isn’t decoded
- Validation::Mismatch::Nonce if a given nonce and the token nonce mismatch
- Validation::Missing::Nonce if either the token or args has a nonce and the other does not
- Validation::Missing::Audience if the token aud doesn’t contain the client id
- Validation::Missing::AuthorizedParty if there are multiple audiences and azp is missing
- Validation::Mismatch::AuthorizedParty if the azp is not the client_id
- Validation::Expired::Expires if the current time is past the expiration time
- Validation::Expired::MaxAge is the token is older than the provided max_age
- Validation::Missing::Authtime if a max_age was given and the token has no auth time