Package org.keycloak.protocol.oidc.rar

Interface AuthorizationDetailsProcessor

All Superinterfaces:
Provider
All Known Implementing Classes:
OID4VCAuthorizationDetailsProcessor
public interface AuthorizationDetailsProcessor extends Provider
Provider interface for processing authorization_details parameter in OAuth2/OIDC authorization and token requests. This follows the RAR (Rich Authorization Requests) specification and allows different implementations to handle various types of authorization details. The authorization_details parameter can be used in both authorization requests and token requests as specified in the OpenID for Verifiable Credential Issuance specification.
Author:
Forkim Akwichek

  • Method Details

    • process

      List<AuthorizationDetailsResponse> process(UserSessionModel userSession, ClientSessionContext clientSessionCtx, String authorizationDetailsParameter)
      Processes the authorization_details parameter and returns a response if this processor is able to handle the given authorization_details parameter.
      Parameters:
      userSession - the user session
      clientSessionCtx - the client session context
      authorizationDetailsParameter - the raw authorization_details parameter value
      Returns:
      authorization details response if this processor can handle the parameter, null if the parameter is incompatible with this processor

    • handleMissingAuthorizationDetails

      List<AuthorizationDetailsResponse> handleMissingAuthorizationDetails(UserSessionModel userSession, ClientSessionContext clientSessionCtx)
      Method is invoked in cases when authorization_details parameter is missing in the request. It allows processor to generate authorization details response in such a case
      Parameters:
      userSession - the user session
      clientSessionCtx - the client session context
      Returns:
      authorization details response if this processor can handle current request in case that authorization_details parameter was not provided