DefaultAuthValidityTime is used if the AuthValidityTime is not configured.

DefaultCodeValidityTime is used if the CodeValidityTime is not configured.

Authorization tracks the information a session was actually authorized for.

AuthorizationRequest details the information the user starting the authorization flow requested.

Config sets configuration values for the OIDC flow implementation.

OIDC can be used to handle the various parts of the OIDC auth flow.

TokenRequest encapsulates the information from the request to the token endpoint.

TokenResponse is returned by the token endpoint handler, indicating what it should actually return to the user.

UserinfoRequest contains information about this request to the UserInfo endpoint.

ClientSource is used for validating client informantion for the general flow.

Session represents an invidual user session, bound to a given client.

SessionManager is used to track the state of the session across it's lifecycle.

Signer is used for signing identity tokens.