OIDCServerConfig¶
- class gafaelfawr.config.OIDCServerConfig(issuer, key_id, keypair, lifetime, clients, data_rights_mapping)¶
Bases:
object
Configuration for the OpenID Connect server.
- Parameters:
Attributes Summary
Supported OpenID Connect clients.
Mapping of group names to keywords for data releases.
iss (issuer) field in issued tokens.
kid (key ID) header field in issued tokens.
RSA key pair for signing and verifying issued tokens.
Lifetime of issued tokens.
Attributes Documentation
-
clients:
tuple
[OIDCClient
,...
]¶ Supported OpenID Connect clients.
-
data_rights_mapping:
Mapping
[str
,frozenset
[str
]]¶ Mapping of group names to keywords for data releases.
Indicates that membership in the given group grants access to that set of data releases. Used to construct the
data_rights
claim, which can be requested by asking for therubin
scope.
-
keypair:
RSAKeyPair
¶ RSA key pair for signing and verifying issued tokens.