Early Preview
This is currently very much a preview. Please feel free to try things out,
but don't be upset if anything is not yet working. Feedback is welcome over on our
GitHub Dicussions page.
interface Duende.IdentityServer.Validation.ICustomBackchannelAuthenticationValidator
Assembly: Duende.IdentityServer
Extensibility point for adding custom validation logic to Client-Initiated Backchannel Authentication (CIBA) requests.
Remarks
Implement this interface to run additional validation after IdentityServer has completed its
built-in CIBA request validation. <see cref="M:Duende.IdentityServer.Validation.ICustomBackchannelAuthenticationValidator.ValidateAsync(Duende.IdentityServer.Validation.CustomBackchannelAuthenticationRequestValidationContext,System.Threading.CancellationToken)" /> is called during backchannel
authentication request processing, giving the implementation an opportunity to inspect or
reject the request based on application-specific rules.
<para>
Common use cases include enforcing additional constraints on the binding message, validating
custom request parameters, or applying per-client policies that are not covered by the
standard CIBA validation.
</para> <para>
To fail the request, set the error details on the <c>Result</c> object of the
<see cref="T:Duende.IdentityServer.Validation.CustomBackchannelAuthenticationRequestValidationContext" />.
</para> <para>
Register implementations using <c>AddCustomBackchannelAuthenticationValidator<T>()</c>
on the IdentityServer builder.
</para>
Methods
ValidateAsync(CustomBackchannelAuthenticationRequestValidationContext customValidationContext,
System.Threading.CancellationToken ct)
Executes custom validation logic for a CIBA backchannel authentication request.
Returns A <see cref="T:System.Threading.Tasks.Task" /> that completes when validation is finished.
customValidationContext
The validation context, providing access to the validated CIBA request parameters and
the result object used to signal failure.
ct
The cancellation token.