Packages
boruta
2.3.4
3.0.0-beta.4
3.0.0-beta.3
3.0.0-beta.2
3.0.0-beta.1
2.3.6
2.3.5
2.3.4
2.3.3
2.3.2
2.3.1
2.3.0
2.2.2
2.2.1
2.2.0
2.1.5
2.1.4
2.1.3
2.1.2
2.1.1
2.1.0
2.0.1
2.0.0
2.0.0-rc.1
2.0.0-rc.0
1.2.1
1.2.0
1.1.0
1.0.3
1.0.2
1.0.1
1.0.0
1.0.0-rc.3
1.0.0-rc.2
1.0.0-rc.1
1.0.0-rc.0
0.2.1
0.2.0
0.1.1
0.1.0
0.1.0-rc.5
0.1.0-rc.4
0.1.0-rc.3
0.1.0-rc.2
0.1.0-rc.1
Core of an OAuth/OpenID Connect provider enabling authorization in your applications.
Current section
Files
Jump to
Current section
Files
lib/boruta/oauth/authorization/nonce.ex
defprotocol Boruta.Oauth.Authorization.Nonce do
@moduledoc """
Check OpenID Connect nonce against given request
"""
@doc """
Authorize the given request corresponding the nonce value.
## Examples
iex> authorize(%CodeRequest{...})
:ok
"""
@spec authorize(request :: Boruta.Oauth.CodeRequest.t() | Boruta.Oauth.TokenRequest.t()) ::
:ok | {:error, Boruta.Oauth.Error.t()}
def authorize(request)
end
defimpl Boruta.Oauth.Authorization.Nonce, for: Boruta.Oauth.CodeRequest do
alias Boruta.Oauth.CodeRequest
alias Boruta.Oauth.Error
def authorize(%Boruta.Oauth.CodeRequest{nonce: nonce} = request) do
case {CodeRequest.require_nonce?(request), nonce} do
{true, nonce} when nonce in [nil, ""] ->
{:error,
%Error{
status: :bad_request,
error: :invalid_request,
error_description: "OpenID requests require a nonce."
}}
_ ->
:ok
end
end
end
defimpl Boruta.Oauth.Authorization.Nonce, for: Boruta.Oauth.TokenRequest do
alias Boruta.Oauth.TokenRequest
alias Boruta.Oauth.Error
def authorize(%Boruta.Oauth.TokenRequest{nonce: nonce} = request) do
case {TokenRequest.require_nonce?(request), nonce} do
{true, nonce} when nonce in [nil, ""] ->
{:error,
%Error{
status: :bad_request,
error: :invalid_request,
error_description: "OpenID requests require a nonce."
}}
_ ->
:ok
end
end
end