Stylesheets for customized OAuth clients
When you create a customized OAuth client, the stylesheets must define all implementation details based on the role of the clients: authorization and token endpoints or enforcement point for resource server.
- For a fully customized client, the stylesheet must handle the following necessary tasks.
- Determine whether the client is valid with the
verify-az-requestoperation. - For authorization codes.
- Provide a way to generate an authorization code with the
issue-az-codeoperation. - Provide a way to verify an authorization code with the
verify-az-codeoperation.
- Provide a way to generate an authorization code with the
- For access tokens.
- Provide a way to generate an access token with the
issue-access-tokenoperation. - Provide a way to verify an access token with the
verify-access-tokenoperation.
- Provide a way to generate an access token with the
- Provide a way to verify a refresh token with the
verify-refresh-tokenoperation.
The stylesheet can handle the following tasks.- Handle a revocation request from the client application to revoke the tokens that are issued to
it with the
client-revoke-requestoperation. - Handle a revocation request from the resource owner to revoke the client application with the
owner-revoke-requestoperation.
- Determine whether the client is valid with the
- For a customized client that is authorization and token endpoints, the stylesheet must handle
the following tasks.
- Determine whether the OAuth client is valid with the
verify-az-requestoperation. - For authorization codes.
- Provide a way to generate an authorization code with the
issue-az-codeoperation. - Provide a way to verify an authorization code with the
verify-az-codeoperation.
- Provide a way to generate an authorization code with the
- For access tokens.
- Provide a way to generate an access token with the
issue-access-tokenoperation. - Provide a way to verify an access token with the
verify-access-tokenoperation.
- Provide a way to generate an access token with the
- Provide a way to verify a refresh token with the
verify-refresh-tokenoperation.
The stylesheet can handle the following tasks.- Handle a revocation request from the client application to revoke the tokens that are issued to
it with the
client-revoke-requestoperation. - Handle a revocation request from the resource owner to revoke the client application with the
owner-revoke-requestoperation.
- Determine whether the OAuth client is valid with the
- For a customized client that is the enforcement point for a resource server, the stylesheet must
handle the following task.
- Provide a way to verify an access token with the
verify-access-tokenoperation.
- Provide a way to verify an access token with the