Skip to content
Duende Software Docs
We just launched Duende IdentityServer v7.2.0 and BFF v3.0. Check it out!

DPoP Proof Validator

Duende.IdentityServer.Validation.IDPoPProofValidator

Section titled “Duende.IdentityServer.Validation.IDPoPProofValidator”

The IDPoPProofValidator interface is used to validate DPoP proof tokens submitted to IdentityServer. A default implementation is provided and can be overridden as necessary.

IDPoPProofValidator APIs

Section titled “IDPoPProofValidator APIs”

  • ValidateAsync

    Validates a DPoP proof token with the provided DPoPProofValidationContext for the current request. Returns a DPoPProofValidationResult object.

DPoPProofValidationContext

Section titled “DPoPProofValidationContext”

Models the information to validate a DPoP proof token request.

  • Client

    The Client making the request.

  • ProofToken

    The proof token sent with the request.

DPoPProofValidationResult

Section titled “DPoPProofValidationResult”

Models the result of a DPoP proof token validation.

  • IsError

    Flag to indicate if validation failed.

  • Error

    The error code if the validation failed.

  • ErrorDescription

    The error description if the validation failed.

  • JsonWebKey

    The serialized JWK from the validated DPoP proof token.

  • JsonWebKeyThumbprint

    The JWK thumbprint from the validated DPoP proof token.

  • Confirmation

    The ‘cnf’ value for the DPoP proof token.

  • Payload

    The payload values of the DPoP proof token.

  • TokenId

    The ‘jti’ value read from the payload.

  • Nonce

    The ‘nonce’ value read from the payload.

  • IssuedAt

    The ‘iat’ value read from the payload.

  • ServerIssuedNonce

    The ‘nonce’ value issued by the server that should be emitted on the response.