package oidc

You can search for identifiers within the package.

in-package search v0.2.0

OpenID Connect
- CHANGES
- README
- Library oidc
  - Oidc
    
    SimpleClient
    
    Client
    
    Discover
    
    Parameters
    
    Display
    
    Prompt
    
    Scopes
    
    Token
    
    Response
    
    Request
    
    RefreshTokenRequest
    
    IDToken
    
    Jwks
    
    Userinfo
    
    Pkce
    
    Verifier
    
    Challenge
    
    Error
- Sources
  - oidc
    
    Claims.ml
    
    Client.ml
    
    Discover.ml
    
    Error.ml
    
    IDToken.ml
    
    Jwks.ml
    
    Oidc.ml
    
    Parameters.ml
    
    Provider.ml
    
    RefreshTokenRequest.ml
    
    Scopes.ml
    
    SimpleClient.ml
    
    States.ml
    
    Token.ml
    
    TokenRequest.ml
    
    TokenResponse.ml
    
    Userinfo.ml
    
    Utils.ml
    
    oidc__.ml
    
    pkce.ml

Legend:
Page
Library
Module
Module type
Parameter
Class
Class type
Source

Source file `Userinfo.ml`

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
(*
 * Copyright 2022 Ulrik Strid. All rights reserved.
 * Use of this source code is governed by a BSD-style
 * license that can be found in the LICENSE file.
 *)

(** Validate that sub returned from userinfo is the same as in the id_token *)
let validate ~(jwt : Jose.Jwt.t) userinfo =
  let userinfo_json = Yojson.Safe.from_string userinfo in
  let userinfo_sub =
    Yojson.Safe.Util.member "sub" userinfo_json
    |> Yojson.Safe.Util.to_string_option
  in
  let sub =
    Yojson.Safe.Util.member "sub" jwt.payload |> Yojson.Safe.Util.to_string
  in
  match userinfo_sub with
  | Some s when s = sub -> Ok userinfo
  | Some _s -> Error `Sub_missmatch
  | None -> Error `Missing_sub

package oidc

Source file Userinfo.ml

Source file `Userinfo.ml`