@node-oauth/oauth2-server

Classes

AuthorizeHandler: Constructor.

Constants

responseTypes: Response types.

AuthorizeHandler

Constructor.

Kind: global class

AuthorizeHandler

authorizeHandler.handle()

Authorize Handler.

Kind: instance method of AuthorizeHandler

authorizeHandler.generateAuthorizationCode()

Generate authorization code.

Kind: instance method of AuthorizeHandler

authorizeHandler.getAuthorizationCodeLifetime()

Get authorization code lifetime.

Kind: instance method of AuthorizeHandler

authorizeHandler.getClient()

Get the client from the model.

Kind: instance method of AuthorizeHandler

authorizeHandler.validateScope()

Validate requested scope.

Kind: instance method of AuthorizeHandler

authorizeHandler.getScope()

Get scope from the request.

Kind: instance method of AuthorizeHandler

authorizeHandler.getState()

Get state from the request.

Kind: instance method of AuthorizeHandler

authorizeHandler.getUser()

Get user by calling the authenticate middleware.

Kind: instance method of AuthorizeHandler

authorizeHandler.getRedirectUri()

Get redirect URI.

Kind: instance method of AuthorizeHandler

authorizeHandler.saveAuthorizationCode()

Save authorization code.

Kind: instance method of AuthorizeHandler

authorizeHandler.getResponseType()

Get response type.

Kind: instance method of AuthorizeHandler

authorizeHandler.buildSuccessRedirectUri()

Build a successful response that redirects the user-agent to the client-provided url.

Kind: instance method of AuthorizeHandler

authorizeHandler.buildErrorRedirectUri()

Build an error response that redirects the user-agent to the client-provided url.

Kind: instance method of AuthorizeHandler

authorizeHandler.updateResponse()

Update response with the redirect uri and the state parameter, if available.

Kind: instance method of AuthorizeHandler

authorizeHandler.getCodeChallengeMethod()

Get code challenge method from request.

When enablePlainPKCE is false (the default), the "plain" method is rejected and the default (when no method is provided) is "S256". When enablePlainPKCE is true, "plain" is accepted and used as the default per RFC 7636 §4.3.

Kind: instance method of AuthorizeHandler
Throws:

InvalidRequestError if request contains unsupported code_challenge_method (see https://www.rfc-editor.org/rfc/rfc7636#section-4.4)

See: https://www.rfc-editor.org/rfc/rfc7636#section-4.3

responseTypes

Response types.

Kind: global constant

Classes ​

Constants ​

AuthorizeHandler ​

authorizeHandler.handle() ​

authorizeHandler.generateAuthorizationCode() ​

authorizeHandler.getAuthorizationCodeLifetime() ​

authorizeHandler.getClient() ​

authorizeHandler.validateScope() ​

authorizeHandler.getScope() ​

authorizeHandler.getState() ​

authorizeHandler.getUser() ​

authorizeHandler.getRedirectUri() ​

authorizeHandler.saveAuthorizationCode() ​

authorizeHandler.getResponseType() ​

authorizeHandler.buildSuccessRedirectUri() ​

authorizeHandler.buildErrorRedirectUri() ​

authorizeHandler.updateResponse() ​

authorizeHandler.getCodeChallengeMethod() ​

responseTypes ​

Classes

Constants

AuthorizeHandler

authorizeHandler.handle()

authorizeHandler.generateAuthorizationCode()

authorizeHandler.getAuthorizationCodeLifetime()

authorizeHandler.getClient()

authorizeHandler.validateScope()

authorizeHandler.getScope()

authorizeHandler.getState()

authorizeHandler.getUser()

authorizeHandler.getRedirectUri()

authorizeHandler.saveAuthorizationCode()

authorizeHandler.getResponseType()

authorizeHandler.buildSuccessRedirectUri()

authorizeHandler.buildErrorRedirectUri()

authorizeHandler.updateResponse()

authorizeHandler.getCodeChallengeMethod()

responseTypes