|
|
|
|
@ -426,7 +426,7 @@
|
|
|
|
|
使用授权码(Authorization Code)认证流程<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#CodeFlowSteps">3.1.1.</a>
|
|
|
|
|
Authorization Code Flow Steps<br>
|
|
|
|
|
授权码(Authorization Code)认证流程步骤<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#AuthorizationEndpoint">3.1.2.</a>
|
|
|
|
|
Authorization Endpoint<br>
|
|
|
|
|
@ -435,7 +435,7 @@
|
|
|
|
|
Authentication Request<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#AuthRequestValidation">3.1.2.2.</a>
|
|
|
|
|
Authentication Request Validation<br>
|
|
|
|
|
Authentication Request 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#Authenticates">3.1.2.3.</a>
|
|
|
|
|
Authorization Server Authenticates End-User<br>
|
|
|
|
|
@ -450,7 +450,7 @@
|
|
|
|
|
Authentication Error Response<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#AuthResponseValidation">3.1.2.7.</a>
|
|
|
|
|
Authentication Response Validation<br>
|
|
|
|
|
Authentication Response 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#TokenEndpoint">3.1.3.</a>
|
|
|
|
|
Token Endpoint<br>
|
|
|
|
|
@ -459,7 +459,7 @@
|
|
|
|
|
Token Request<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#TokenRequestValidation">3.1.3.2.</a>
|
|
|
|
|
Token Request Validation<br>
|
|
|
|
|
Token Request 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#TokenResponse">3.1.3.3.</a>
|
|
|
|
|
Successful Token Response<br>
|
|
|
|
|
@ -468,21 +468,21 @@
|
|
|
|
|
Token Error Response<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#TokenResponseValidation">3.1.3.5.</a>
|
|
|
|
|
Token Response Validation<br>
|
|
|
|
|
Token Response 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#CodeIDToken">3.1.3.6.</a>
|
|
|
|
|
ID Token<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#IDTokenValidation">3.1.3.7.</a>
|
|
|
|
|
ID Token Validation<br>
|
|
|
|
|
ID Token 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#CodeFlowTokenValidation">3.1.3.8.</a>
|
|
|
|
|
Access Token Validation<br>
|
|
|
|
|
Access Token 验证<br>
|
|
|
|
|
<a href="#ImplicitFlowAuth">3.2.</a>
|
|
|
|
|
Authentication using the Implicit Flow<br>
|
|
|
|
|
使用隐式(Implicit)认证流程<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitFlowSteps">3.2.1.</a>
|
|
|
|
|
Implicit Flow Steps<br>
|
|
|
|
|
隐式(Implicit)认证流程步骤<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitAuthorizationEndpoint">3.2.2.</a>
|
|
|
|
|
Authorization Endpoint<br>
|
|
|
|
|
@ -491,7 +491,7 @@
|
|
|
|
|
Authentication Request<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitValidation">3.2.2.2.</a>
|
|
|
|
|
Authentication Request Validation<br>
|
|
|
|
|
Authentication Request 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitAuthenticates">3.2.2.3.</a>
|
|
|
|
|
Authorization Server Authenticates End-User<br>
|
|
|
|
|
@ -509,21 +509,21 @@
|
|
|
|
|
Redirect URI Fragment Handling<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitAuthResponseValidation">3.2.2.8.</a>
|
|
|
|
|
Authentication Response Validation<br>
|
|
|
|
|
Authentication Response 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitTokenValidation">3.2.2.9.</a>
|
|
|
|
|
Access Token Validation<br>
|
|
|
|
|
Access Token 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitIDToken">3.2.2.10.</a>
|
|
|
|
|
ID Token<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#ImplicitIDTValidation">3.2.2.11.</a>
|
|
|
|
|
ID Token Validation<br>
|
|
|
|
|
ID Token 验证<br>
|
|
|
|
|
<a href="#HybridFlowAuth">3.3.</a>
|
|
|
|
|
Authentication using the Hybrid Flow<br>
|
|
|
|
|
使用混合(Hybrid)认证流程<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridFlowSteps">3.3.1.</a>
|
|
|
|
|
Hybrid Flow Steps<br>
|
|
|
|
|
混合(Hybrid)认证流程步骤<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridAuthorizationEndpoint">3.3.2.</a>
|
|
|
|
|
Authorization Endpoint<br>
|
|
|
|
|
@ -532,7 +532,7 @@
|
|
|
|
|
Authentication Request<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridValidation">3.3.2.2.</a>
|
|
|
|
|
Authentication Request Validation<br>
|
|
|
|
|
Authentication Request 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridAuthenticates">3.3.2.3.</a>
|
|
|
|
|
Authorization Server Authenticates End-User<br>
|
|
|
|
|
@ -550,19 +550,19 @@
|
|
|
|
|
Redirect URI Fragment Handling<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridAuthResponseValidation">3.3.2.8.</a>
|
|
|
|
|
Authentication Response Validation<br>
|
|
|
|
|
Authentication Response 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridTokenValidation">3.3.2.9.</a>
|
|
|
|
|
Access Token Validation<br>
|
|
|
|
|
Access Token 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#CodeValidation">3.3.2.10.</a>
|
|
|
|
|
Authorization Code Validation<br>
|
|
|
|
|
Authorization Code 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridIDToken">3.3.2.11.</a>
|
|
|
|
|
ID Token<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridIDTValidation">3.3.2.12.</a>
|
|
|
|
|
ID Token Validation<br>
|
|
|
|
|
ID Token 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridTokenEndpoint">3.3.3.</a>
|
|
|
|
|
Token Endpoint<br>
|
|
|
|
|
@ -571,7 +571,7 @@
|
|
|
|
|
Token Request<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridTokenRequestValidation">3.3.3.2.</a>
|
|
|
|
|
Token Request Validation<br>
|
|
|
|
|
Token Request 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridTokenResponse">3.3.3.3.</a>
|
|
|
|
|
Successful Token Response<br>
|
|
|
|
|
@ -580,51 +580,51 @@
|
|
|
|
|
Token Error Response<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridTokenResponseValidation">3.3.3.5.</a>
|
|
|
|
|
Token Response Validation<br>
|
|
|
|
|
Token Response 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridIDToken2">3.3.3.6.</a>
|
|
|
|
|
ID Token<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridIDTValidation2">3.3.3.7.</a>
|
|
|
|
|
ID Token Validation<br>
|
|
|
|
|
ID Token 验证<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridAccessToken2">3.3.3.8.</a>
|
|
|
|
|
Access Token<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#HybridTokenValidation2">3.3.3.9.</a>
|
|
|
|
|
Access Token Validation<br>
|
|
|
|
|
Access Token 验证<br>
|
|
|
|
|
<a href="#ThirdPartyInitiatedLogin">4.</a>
|
|
|
|
|
Initiating Login from a Third Party<br>
|
|
|
|
|
从第三方(Third Party)发起登录<br>
|
|
|
|
|
<a href="#Claims">5.</a>
|
|
|
|
|
Claims<br>
|
|
|
|
|
<a href="#StandardClaims">5.1.</a>
|
|
|
|
|
Standard Claims<br>
|
|
|
|
|
标准 Claims<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#AddressClaim">5.1.1.</a>
|
|
|
|
|
Address Claim<br>
|
|
|
|
|
地址 Claim<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#AdditionalClaims">5.1.2.</a>
|
|
|
|
|
Additional Claims<br>
|
|
|
|
|
附加的 Claims<br>
|
|
|
|
|
<a href="#ClaimsLanguagesAndScripts">5.2.</a>
|
|
|
|
|
Claims Languages and Scripts<br>
|
|
|
|
|
Claims 语言与脚本(Scripts)<br>
|
|
|
|
|
<a href="#UserInfo">5.3.</a>
|
|
|
|
|
UserInfo Endpoint<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#UserInfoRequest">5.3.1.</a>
|
|
|
|
|
UserInfo Request<br>
|
|
|
|
|
UserInfo 请求<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#UserInfoResponse">5.3.2.</a>
|
|
|
|
|
Successful UserInfo Response<br>
|
|
|
|
|
成功的 UserInfo 响应<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#UserInfoError">5.3.3.</a>
|
|
|
|
|
UserInfo Error Response<br>
|
|
|
|
|
UserInfo 错误响应<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#UserInfoResponseValidation">5.3.4.</a>
|
|
|
|
|
UserInfo Response Validation<br>
|
|
|
|
|
UserInfo Response 验证<br>
|
|
|
|
|
<a href="#ScopeClaims">5.4.</a>
|
|
|
|
|
Requesting Claims using Scope Values<br>
|
|
|
|
|
请求 Claims 使用 Scope 值<br>
|
|
|
|
|
<a href="#ClaimsParameter">5.5.</a>
|
|
|
|
|
Requesting Claims using the "claims" Request Parameter<br>
|
|
|
|
|
请求 Claims 使用 "claims" 请求参数<br>
|
|
|
|
|
<a
|
|
|
|
|
href="#IndividualClaimsRequests">5.5.1.</a>
|
|
|
|
|
Individual Claims Requests<br>
|
|
|
|
|
|
LSZ
8 years ago