Updated Client configuration (markdown)

2013-12-09 04:56:01 -08:00 · 2013-12-09 04:56:01 -08:00 · 5df8151af3
parent b986dfd598
commit 5df8151af3
1 changed files with 21 additions and 0 deletions
--- a/Client-configuration.md
+++ b/Client-configuration.md
@ -429,3 +429,24 @@ Furthermore, the client must be configured to publish its public key at a URL th
 	</bean>
 ```

+### Encrypted Authorization Request
+
+Builds the URL using an encrypted Request Object. 
+
+```
+<bean class="org.mitre.openid.connect.client.service.impl.EncryptedAuthRequestUrlBuilder">
+  <property name="encryptionService" ref="validatorCache" />
+  <property name="alg">
+    <bean class="com.nimbusds.jose.JWEAlgorithm">
+       <constructor-arg name="name">RSA1_5</constructor-arg>
+    </bean>
+  </property>
+  <property name="enc">
+    <bean class="com.nimbusds.jose.EncryptionMethod">
+       <constructor-arg name="name">A128CBC+HS256</constructor-arg>
+    </bean>
+  </property>
+</bean>
+```
+
+The builder must have access to the `JWKSetValidator` bean in order to find the server's public keys to encrypt to.