Package io.jans.as.server.model.common
package io.jans.as.server.model.common
-
ClassDescriptionBase class for the access token, refresh token and authorization code.Access token (as well as any access token type-specific attributes) MUST be kept confidential in transit and storage, and only shared among the authorization server, the resource servers the access token is valid for, and the client to whom the access token is issued.The authorization code is obtained by using an authorization server as an intermediary between the client and resource owner.The authorization code is obtained by using an authorization server as an intermediary between the client and resource owner.Base class for all the types of authorization grant.Component to hold in memory authorization grant objects.An authorization grant is a credential representing the resource owner's authorization (to access its protected resources) used by the client to obtain an access token.An extension grant with the grant type value: urn:openid:params:grant-type:cibaClass used to keep all data about a CIBA request that should be processed and saved in Cache.The client credentials (or other forms of client authentication) can be used as an authorization grant when the authorization scope is limited to the protected resources under the control of the client, or to protected resources previously arranged with the authorization server.Class used to keep all data about an OAuth2 Device Flow request.Contains a list of values of status for OAuth2 Device Flow requests.An extension grant with the grant type value: urn:ietf:params:oauth:grant-type:device_codeThe implicit grant is a simplified authorization code flow optimized for clients implemented in a browser using a scripting language such as JavaScript.Authorization servers MAY issue refresh tokens to web application clients and native application clients.The resource owner password credentials (i.e. username and password) can be used directly as an authorization grant to obtain an access token.Gives ability to use authorization grant in read-only mode.