GNUnet  0.11.x
oidc_helper.h
Go to the documentation of this file.
1 /*
2  This file is part of GNUnet
3  Copyright (C) 2010-2015 GNUnet e.V.
4 
5  GNUnet is free software: you can redistribute it and/or modify it
6  under the terms of the GNU Affero General Public License as published
7  by the Free Software Foundation, either version 3 of the License,
8  or (at your option) any later version.
9 
10  GNUnet is distributed in the hope that it will be useful, but
11  WITHOUT ANY WARRANTY; without even the implied warranty of
12  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
13  Affero General Public License for more details.
14 
15  You should have received a copy of the GNU Affero General Public License
16  along with this program. If not, see <http://www.gnu.org/licenses/>.
17 
18  SPDX-License-Identifier: AGPL3.0-or-later
19  */
20 
27 #ifndef JWT_H
28 #define JWT_H
29 
30 #define JWT_ALG "alg"
31 
32 /* Use 512bit HMAC */
33 #define JWT_ALG_VALUE "HS512"
34 
35 #define JWT_TYP "typ"
36 
37 #define JWT_TYP_VALUE "jwt"
38 
39 #define SERVER_ADDRESS "https://api.reclaim"
40 
42 {
47 
52 };
53 
65 char*
67  const struct GNUNET_IDENTITY_PublicKey *sub_key,
68  const struct GNUNET_RECLAIM_AttributeList *attrs,
69  const struct
70  GNUNET_RECLAIM_PresentationList *presentations,
71  const struct GNUNET_TIME_Relative *expiration_time,
72  const char *nonce,
73  const char *secret_key);
74 
88 char*
90  const struct GNUNET_RECLAIM_Ticket *ticket,
91  const struct GNUNET_RECLAIM_AttributeList *attrs,
92  const struct
93  GNUNET_RECLAIM_PresentationList *presentations,
94  const char *nonce,
95  const char *code_challenge);
96 
111 int
112 OIDC_parse_authz_code (const struct GNUNET_IDENTITY_PublicKey *ecdsa_pub,
113  const char *code,
114  const char *code_verifier,
116  struct GNUNET_RECLAIM_AttributeList **attrs,
117  struct GNUNET_RECLAIM_PresentationList **presentations,
118  char **nonce,
120 
130 void
131 OIDC_build_token_response (const char *access_token,
132  const char *id_token,
133  const struct GNUNET_TIME_Relative *expiration_time,
134  char **token_response);
135 
139 char*
141 
145 int
146 OIDC_access_token_parse (const char*token,
147  struct GNUNET_RECLAIM_Ticket **ticket);
148 
149 
159 OIDC_check_scopes_for_claim_request (const char *scopes,
160  const char *attr);
161 
162 
171 char *
173  const struct GNUNET_RECLAIM_AttributeList *attrs,
174  const struct
175  GNUNET_RECLAIM_PresentationList *presentations);
176 
177 #endif
Do not check code verifier even if expected.
Definition: oidc_helper.h:51
The authorization ticket.
OIDC_VerificationOptions
Definition: oidc_helper.h:41
char * OIDC_build_authz_code(const struct GNUNET_IDENTITY_PrivateKey *issuer, const struct GNUNET_RECLAIM_Ticket *ticket, const struct GNUNET_RECLAIM_AttributeList *attrs, const struct GNUNET_RECLAIM_PresentationList *presentations, const char *nonce, const char *code_challenge)
Builds an OIDC authorization code including a reclaim ticket and nonce.
Definition: oidc_helper.c:489
A private key for an identity as per LSD0001.
GNUNET_GenericReturnValue
Named constants for return values.
Definition: gnunet_common.h:83
A list of GNUNET_RECLAIM_Attribute structures.
char * OIDC_access_token_new(const struct GNUNET_RECLAIM_Ticket *ticket)
Generate a new access token.
Definition: oidc_helper.c:824
int OIDC_parse_authz_code(const struct GNUNET_IDENTITY_PublicKey *ecdsa_pub, const char *code, const char *code_verifier, struct GNUNET_RECLAIM_Ticket *ticket, struct GNUNET_RECLAIM_AttributeList **attrs, struct GNUNET_RECLAIM_PresentationList **presentations, char **nonce, enum OIDC_VerificationOptions opts)
Parse reclaim ticket and nonce from authorization code.
Definition: oidc_helper.c:675
char * OIDC_generate_id_token(const struct GNUNET_IDENTITY_PublicKey *aud_key, const struct GNUNET_IDENTITY_PublicKey *sub_key, const struct GNUNET_RECLAIM_AttributeList *attrs, const struct GNUNET_RECLAIM_PresentationList *presentations, const struct GNUNET_TIME_Relative *expiration_time, const char *nonce, const char *secret_key)
Create a JWT from attributes.
Definition: oidc_helper.c:371
static struct GNUNET_RECLAIM_Ticket ticket
Ticket to consume.
void OIDC_build_token_response(const char *access_token, const char *id_token, const struct GNUNET_TIME_Relative *expiration_time, char **token_response)
Build a token response for a token request TODO: Maybe we should add the scope here?
Definition: oidc_helper.c:796
enum GNUNET_GenericReturnValue OIDC_check_scopes_for_claim_request(const char *scopes, const char *attr)
Checks if a claim is implicitly requested through standard scope(s)
Definition: oidc_helper.c:860
Strict verification.
Definition: oidc_helper.h:46
An identity key as per LSD0001.
A list of GNUNET_RECLAIM_Presentation structures.
int OIDC_access_token_parse(const char *token, struct GNUNET_RECLAIM_Ticket **ticket)
Parse an access token.
Definition: oidc_helper.c:839
char * OIDC_generate_userinfo(const struct GNUNET_IDENTITY_PublicKey *sub_key, const struct GNUNET_RECLAIM_AttributeList *attrs, const struct GNUNET_RECLAIM_PresentationList *presentations)
Generate userinfo JSON as string.
Definition: oidc_helper.c:344
Time for relative time used by GNUnet, in microseconds.