CreateJWTSigningKey creates a signing key from an algorithm / key pair.

returns a list of "org" and "org:team" strings, that the given user is a part of.

GrantAdditionalScopes returns valid scopes coming from grant.

Init initializes the oauth source.

InitSigningKey creates the default signing key from settings or creates a random key.

ParseToken parses a signed jwt string.

AccessTokenErrorCodeInvalidClient represents an error code specified in RFC 6749.

AccessTokenErrorCodeInvalidGrant represents an error code specified in RFC 6749.

AccessTokenErrorCodeInvalidRequest represents an error code specified in RFC 6749.

AccessTokenErrorCodeInvalidScope represents an error code specified in RFC 6749.

AccessTokenErrorCodeUnauthorizedClient represents an error code specified in RFC 6749.

AccessTokenErrorCodeUnsupportedGrantType represents an error code specified in RFC 6749.

KindAccessToken is a token with short lifetime to access the api.

KindRefreshToken is token with long lifetime to refresh access tokens obtained by the client.

TokenTypeBearer represents a token type specified in RFC 6749.

TokenTypeMAC represents a token type specified in RFC 6749.

DefaultSigningKey is the default signing key for JWTs.

AccessTokenError represents an error response specified in RFC 6749 https://datatracker.ietf.org/doc/html/rfc6749#section-5.2.

AccessTokenResponse represents a successful access token response https://datatracker.ietf.org/doc/html/rfc6749#section-4.2.2.

ErrInvalidAlgorithmType represents an invalid algorithm error.

OIDCToken represents an OpenID Connect id_token.

Token represents a JWT token used to authenticate a client.

JWTSigningKey represents a algorithm/key pair to sign JWTs.

AccessTokenErrorCode represents an error code specified in RFC 6749 https://datatracker.ietf.org/doc/html/rfc6749#section-5.2.

TokenKind represents the type of token for an oauth application.

TokenType specifies the kind of token.