Early Preview
This is currently very much a preview. Please feel free to try things out,
but don't be upset if anything is not yet working. Feedback is welcome over on our
GitHub Dicussions page.
class Duende.IdentityModel.Client.DynamicClientRegistrationDocument
Assembly: Duende.IdentityModel
Inheritance: object → DynamicClientRegistrationDocument
Models an OpenID Connect dynamic client registration request.
Remarks
<see href="https://datatracker.ietf.org/doc/html/rfc7591" /> and <see href="https://openid.net/specs/openid-connect-registration-1_0.html" /> .
Properties
RedirectUris
List of redirection URI strings for use in redirect-based flows such as the authorization code and implicit flows.
Remarks Clients using flows with redirection must register their redirection URI values.
public
System.Collections.Generic.ICollection<string>
ResponseTypes
List of the OAuth 2.0 response type strings that the client can use at the authorization endpoint.
Remarks Example: "code" or "token".
public
System.Collections.Generic.ICollection<string>
GrantTypes
List of OAuth 2.0 grant type strings that the client can use at the token endpoint.
Remarks Example: "authorization_code", "implicit", "password", "client_credentials", "refresh_token".
public
string
ApplicationType
Kind of the application.
Remarks The defined values are "native" or "web".
public
System.Collections.Generic.ICollection<string>
Contacts
List of strings representing ways to contact people responsible for this client, typically email addresses.
Remarks The authorization server may make these contact addresses available to end-users for support requests for the client.
public
string
ClientName
Human-readable string name of the client to be presented to the end-user during authorization.
public
System.Uri
LogoUri
Logo for the client.
Remarks If present, the server should display this image to the end-user during approval.
public
System.Uri
ClientUri
Web page providing information about the client.
public
System.Uri
PolicyUri
Human-readable privacy policy document that describes how the deployment organization
collects, uses, retains, and discloses personal data.
public
System.Uri
TosUri
Human-readable terms of service document for the client that describes a contractual relationship
between the end-user and the client that the end-user accepts when authorizing the client.
public
System.Uri
JwksUri
JWK Set document which contains the client's public keys.
Remarks Use of this parameter is preferred over the "jwks" parameter, as it allows for easier key rotation.
The <see cref="P:Duende.IdentityModel.Client.DynamicClientRegistrationDocument.JwksUri" /> and <see cref="P:Duende.IdentityModel.Client.DynamicClientRegistrationDocument.Jwks" /> parameters MUST NOT both be present in
the same request or response.
public
Jwk.JsonWebKeySet
Jwks
public
System.Uri
SectorIdentifierUri
URL using the https scheme to be used in calculating Pseudonymous Identifiers by the OpenID provider.
Remarks The URL references a file with a single JSON array of <c>redirect_uri</c> values.
public
string
SubjectType
Remarks Valid types include "pairwise" and "public".
public
string
Scope
String containing a space-separated list of scope values that the client can use when requesting access tokens.
Remarks If omitted, an authorization server may register a client with a default set of scopes.
PostLogoutRedirectUris
List of post-logout redirection URIs for use in the end session
endpoint.
public
string
FrontChannelLogoutUri
RP URL that will cause the RP to log itself out when rendered in an
iframe by the OP.
public
bool?
FrontChannelLogoutSessionRequired
Boolean value specifying whether the RP requires that a sid (session ID)
query parameter be included to identify the RP session with the OP when
the frontchannel_logout_uri is used.
public
string
BackChannelLogoutUri
RP URL that will cause the RP to log itself out when sent a Logout Token
by the OP.
public
bool?
BackchannelLogoutSessionRequired
Boolean value specifying whether the RP requires that a sid (session ID)
Claim be included in the Logout Token to identify the RP session with
the OP when the backchannel_logout_uri is used.e
public
string
SoftwareStatement
A software statement containing client metadata values about the client
software as claims. This is a string value containing the entire signed
JWT.
public
string
SoftwareId
A unique identifier string (e.g., a <see cref="T:System.Guid" /> ) assigned by the client developer or software
publisher used by registration endpoints to identify the client software to be dynamically registered.
Remarks The value of this field is not intended to be human readable and is usually opaque to the client and authorization server.
public
string
SoftwareVersion
A version identifier string for the client software identified by <see cref="P:Duende.IdentityModel.Client.DynamicClientRegistrationDocument.SoftwareId" /> .
public
string
IdentityTokenSignedResponseAlgorithm
public
string
IdentityTokenEncryptedResponseAlgorithm
public
string
IdentityTokenEncryptedResponseEncryption
public
string
UserinfoSignedResponseAlgorithm
public
string
UserInfoEncryptedResponseAlgorithm
public
string
UserinfoEncryptedResponseEncryption
public
string
RequestObjectSigningAlgorithm
public
string
RequestObjectEncryptionAlgorithm
public
string
RequestObjectEncryptionEncryption
public
bool?
RequireSignedRequestObject
Boolean value specifying whether authorization requests must be
protected as signed request objects and provided through either the
request or request_uri parameters.
public
string
TokenEndpointAuthenticationMethod
public
string
TokenEndpointAuthenticationSigningAlgorithm
public
int?
DefaultMaxAge
Default maximum authentication age.
public
bool?
RequireAuthenticationTime
Whether the <c>auth_time</c> claim in the id token is required.
public
System.Collections.Generic.ICollection<string>
DefaultAcrValues
Default requested Authentication Context Class Reference values.
public
System.Uri
InitiateLoginUri
URI using the https scheme that a third party can use to initiate a
login by the relying party.
Remarks The URI must accept requests via both GET and POST. The client must
understand the <c>login_hint</c> and iss parameters and should support
the <c>target_link_uri</c> parameter.
RequestUris
List of request URI values that are pre-registered by the relying party for use at the OpenID provider.
public
System.Collections.Generic.IDictionary<string, System.Text.Json.JsonElement>
Extensions
Custom client metadata fields to include in the serialization.
public
string
IntrospectionSignedResponseAlgorithm
public
string
IntrospectionEncryptedResponseAlgorithm
public
string
IntrospectionEncryptedResponseEncryption
Methods
public
bool
ShouldSerializeRequestUris()
public
bool
ShouldSerializeDefaultAcrValues()
public
bool
ShouldSerializeResponseTypes()
public
bool
ShouldSerializeGrantTypes()
public
bool
ShouldSerializeContacts()
public
bool
Equals(object obj)
Inherited from object
protected
void
Finalize()
Inherited from object
public
int
GetHashCode()
Inherited from object
protected
object
MemberwiseClone()
Inherited from object
public
string
ToString()
Inherited from object