OpenID Connect Library for Rust
This library provides extensible, strongly-typed interfaces for the OpenID Connect protocol.
API documentation and examples are available on docs.rs.
- OpenID Connect Core
- This crate passes the
Relying Party Certification
conformance tests for
response_type=code
- Supported features:
- Relying Party flows: code, implicit, hybrid
- Standard claims
- UserInfo endpoint
- RSA, HMAC, and ECDSA (P-256/P-384 curves) ID token verification
- Unsupported features:
- Aggregated and distributed claims
- Passing request parameters as JWTs
- Verification of the
azp
claim (see discussion) - ECDSA-based ID token verification using the P-521 curve
- JSON Web Encryption (JWE)
- This crate passes the
Relying Party Certification
conformance tests for
- OpenID Connect Discovery
- Supported features:
- Provider Metadata
- Unsupported features:
- WebFinger
- Supported features:
- OpenID Connect Dynamic Client Registration
- Supported features:
- Client Metadata
- Client Registration endpoint
- Unsupported features:
- Client Configuration endpoint
- Supported features:
- OAuth 2.0 Token Introspection
- OAuth 2.0 Token Revocation
This project is sponsored by Unflakable, a service for tracking and quarantining flaky tests.