Module authorization

Expand description

Provides the handling for Authorization Code Requests

Structs§

Authorization: The result will indicate wether the authorization succeed or not.
ErrorUrl: Encapsulates a redirect to a valid redirect_uri with an error response. The implementation makes it possible to alter the contained error, for example to provide additional optional information. The error type should not be altered by the frontend but the specificalities of this should be enforced by the frontend instead.
Pending: Represents a valid, currently pending authorization request not bound to an owner. The frontend can signal a reponse using this object.

Error: Defines the correct treatment of the error. Not all errors are signalled to the requesting party, especially when impersonation is possible it is integral for security to resolve the error internally instead of redirecting the user agent to a possibly crafted and malicious target.
Input: Input injected by the executor into the state machine.
Output: A request by the statemachine to the executor.

Endpoint: Required functionality to respond to authorization code requests.
Extension: A system of addons provided additional data.
Request: Interface required from a request to determine the handling in the backend.

authorization_code: Retrieve allowed scope and redirect url from the registrar.