Backchannel Authentication User Validator
Duende.IdentityServer.Validation.IBackchannelAuthenticationUserValidator
Section titled “Duende.IdentityServer.Validation.IBackchannelAuthenticationUserValidator”The IBackchannelAuthenticationUserValidator interface is used to validate request hints and identify the user for whom
the CIBA request is intended.
To use CIBA, you are expected to implement this interface and register it in the ASP.NET Core service provider.
IBackchannelAuthenticationUserValidator APIs
Section titled “IBackchannelAuthenticationUserValidator APIs”-
ValidateRequestAsyncValidates the backchannel login request with the provided
BackchannelAuthenticationUserValidatorContextfor the current request. Returns aBackchannelAuthenticationUserValidationResultobject.
BackchannelAuthenticationUserValidatorContext
Section titled “BackchannelAuthenticationUserValidatorContext”Models the information to validate and identity the user for a CIBA login request.
-
ClientThe
Clientmaking the request. -
LoginHintTokenThe login hint request parameter from the request.
-
IdTokenHintThe id token hint request parameter from the request.
-
IdTokenHintClaimsThe claims contained in the validated id token hint from the request.
-
LoginHintThe login hint request parameter from the request.
-
UserCodeThe user code request parameter from the request.
-
BindingMessageThe binding request parameter from the request.
BackchannelAuthenticationUserValidationResult
Section titled “BackchannelAuthenticationUserValidationResult”Models the result of a CIBA login request.
-
SubjectThe
ClaimsPrincipalthat represents the user that was successfully identified for the login request. This must contain the user’s"sub"claim. -
ErrorThe error if the user validation failed.
-
ErrorDescriptionThe error description if the user validation failed.