lib/authlete/model/service.rb in authlete-1.0.14 vs lib/authlete/model/service.rb in authlete-1.0.15
- old
+ new
@@ -100,10 +100,17 @@
# (Integer)
attr_accessor :backchannelAuthReqIdDuration
alias_method :backchannel_auth_req_id_duration, :backchannelAuthReqIdDuration
alias_method :backchannel_auth_req_id_duration=, :backchannelAuthReqIdDuration=
+ # The flag indicating whether the +binding_message+ request parameter
+ # is always required whenever a backchannel authentication request is
+ # judged as a request for Financial-grade API. (Boolean)
+ attr_accessor :backchannelBindingMessageRequiredInFapi
+ alias_method :backchannel_binding_message_required_in_fapi, :backchannelBindingMessageRequiredInFapi
+ alias_method :backchannel_binding_message_required_in_fapi=, :backchannelBindingMessageRequiredInFapi=
+
# The minimum interval between polling requests in seconds. (Integer)
attr_accessor :backchannelPollingInterval
alias_method :backchannel_polling_interval, :backchannelPollingInterval
alias_method :backchannel_polling_interval=, :backchannelPollingInterval=
@@ -289,10 +296,16 @@
# (Boolean)
attr_accessor :pkceRequired
alias_method :pkce_required, :pkceRequired
alias_method :pkce_required=, :pkceRequired=
+ # The flag indicating whether S256 is required as the code challenge
+ # method whenever PKCE is used. (Boolean)
+ attr_accessor :pkceS256Required
+ alias_method :pkce_s256_required, :pkceS256Required
+ alias_method :pkce_s256_required=, :pkceS256Required=
+
# The URI of the service's policy page. (String)
attr_accessor :policyUri
alias_method :policy_uri, :policyUri
alias_method :policy_uri=, :policyUri=
@@ -483,10 +496,15 @@
# client ID as a path component. (String)
attr_accessor :registrationManagementEndpoint
alias_method :registration_management_endpoint, :registrationManagementEndpoint
alias_method :registration_management_endpoint=, :registrationManagementEndpoint=
+ # The URI of request object endpoint. (String)
+ attr_accessor :requestObjectEndpoint
+ alias_method :request_object_endpoint, :requestObjectEndpoint
+ alias_method :request_object_endpoint=, :requestObjectEndpoint=
+
private
# Integer attributes.
INTEGER_ATTRIBUTES = ::Set.new([
:accessTokenDuration, :allowableClockSkew, :apiKey, :authorizationResponseDuration,
@@ -496,15 +514,16 @@
:serviceOwnerNumber, :userCodeLength
])
# Boolean attributes.
BOOLEAN_ATTRIBUTES = ::Set.new([
- :backchannelUserCodeParameterSupported, :clientIdAliasEnabled,
+ :backchannelBindingMessageRequiredInFapi, :backchannelUserCodeParameterSupported,
+ :clientIdAliasEnabled,
:directAuthorizationEndpointEnabled, :directIntrospectionEndpointEnabled,
:directJwksEndpointEnabled, :directRevocationEndpointEnabled, :directTokenEndpointEnabled,
:directUserInfoEndpointEnabled, :errorDescriptionOmitted, :errorUriOmitted,
- :mutualTlsValidatePkiCertChain, :pkceRequired, :refreshTokenKept,
+ :mutualTlsValidatePkiCertChain, :pkceRequired, :pkceS256Required, :refreshTokenKept,
:singleAccessTokenPerSubject, :tlsClientCertificateBoundAccessTokens,
:dynamicRegistrationSupported
])
# String attributes.
@@ -514,13 +533,13 @@
:authenticationCallbackEndpoint, :authorizationEndpoint, :authorizationSignatureKeyId,
:backchannelAuthenticationEndpoint, :description, :developerAuthenticationCallbackApiKey,
:developerAuthenticationCallbackApiSecret, :developerAuthenticationCallbackEndpoint,
:deviceAuthorizationEndpoint, :deviceVerificationUri, :deviceVerificationUriComplete,
:idTokenSignatureKeyId, :introspectionEndpoint, :issuer, :jwks, :jwksUri,
- :policyUri, :registrationEndpoint, :serviceDocumentation, :serviceName,
- :tokenEndpoint, :tosUri, :userCodeCharset, :userInfoEndpoint, :userInfoSignatureKeyId,
- :revocationEndpoint, :registrationManagementEndpoint
+ :policyUri, :registrationEndpoint, :registrationManagementEndpoint,
+ :requestObjectEndpoint, :revocationEndpoint, :serviceDocumentation, :serviceName,
+ :tokenEndpoint, :tosUri, :userCodeCharset, :userInfoEndpoint, :userInfoSignatureKeyId
])
# String array attributes.
STRING_ARRAY_ATTRIBUTES = ::Set.new([
:supportedAcrs, :supportedBackchannelTokenDeliveryModes, :supportedClaimLocales,
@@ -549,10 +568,11 @@
:authentication_callback_endpoint => :authenticationCallbackEndpoint,
:authorization_endpoint => :authorizationEndpoint,
:authorization_response_duration => :authorizationResponseDuration,
:authorization_signature_key_id => :authorizationSignatureKeyId,
:backchannel_authentication_endpoint => :backchannelAuthenticationEndpoint,
+ :backchannel_binding_message_required_in_fapi => :backchannelBindingMessageRequiredInFapi,
:backchannel_auth_req_id_duration => :backchannelAuthReqIdDuration,
:backchannel_polling_interval => :backchannelPollingInterval,
:backchannel_user_code_parameter_supported => :backchannelUserCodeParameterSupported,
:developer_authentication_callback_api_key => :developerAuthenticationCallbackApiKey,
:developer_authentication_callback_api_secret => :developerAuthenticationCallbackApiSecret,
@@ -580,15 +600,17 @@
:introspection_endpoint => :introspectionEndpoint,
:jwks_uri => :jwksUri,
:modified_at => :modifiedAt,
:mutual_tls_validate_pki_cert_chain => :mutualTlsValidatePkiCertChain,
:pkce_required => :pkceRequired,
+ :pkce_s256_required => :pkceS256Required,
:policy_uri => :policyUri,
:refresh_token_duration => :refreshTokenDuration,
:refresh_token_kept => :refreshTokenKept,
:registration_endpoint => :registrationEndpoint,
:registration_management_endpoint => :registrationManagementEndpoint,
:revocation_endpoint => :revocationEndpoint,
+ :request_object_endpoint => :requestObjectEndpoint,
:service_documentation => :serviceDocumentation,
:service_name => :serviceName,
:service_owner_number => :serviceOwnerNumber,
:single_access_token_per_subject => :singleAccessTokenPerSubject,
:sns_credentials => :snsCredentials,
\ No newline at end of file