OAuth2ClientAssertionType uses ConstantsTrait
Enumeration of OAuth 2.0 `client_assertion_type` values (RFC 7521).
Values used with the OAuth2Parameter::CLIENT_ASSERTION_TYPE parameter to indicate the format of the assertion carried in OAuth2Parameter::CLIENT_ASSERTION.
Used for the client_secret_jwt and private_key_jwt client
authentication methods (see OAuth2TokenEndpointAuthMethod).
Example:
$params =
[
OAuth2Parameter::GRANT_TYPE => OAuth2GrantType::CLIENT_CREDENTIALS ,
OAuth2Parameter::CLIENT_ASSERTION_TYPE => OAuth2ClientAssertionType::JWT_BEARER ,
OAuth2Parameter::CLIENT_ASSERTION => $signedJwt ,
] ;
References:
- RFC 7521 §4.2 (Assertion-based client authentication)
- RFC 7522 §2.2 (SAML 2.0 bearer client authentication)
- RFC 7523 §2.2 (JWT bearer client authentication)
Tags
Table of Contents
Constants
- JWT_BEARER : string = 'urn:ietf:params:oauth:client-assertion-type:jw...
- `urn:ietf:params:oauth:client-assertion-type:jwt-bearer` — The `client_assertion` is a JWT signed either with the client's shared secret (`client_secret_jwt`) or with the client's private key (`private_key_jwt`).
- SAML2_BEARER : string = 'urn:ietf:params:oauth:client-assertion-type:sa...
- `urn:ietf:params:oauth:client-assertion-type:saml2-bearer` — The `client_assertion` is a SAML 2.0 bearer assertion.
Constants
JWT_BEARER
`urn:ietf:params:oauth:client-assertion-type:jwt-bearer` — The `client_assertion` is a JWT signed either with the client's shared secret (`client_secret_jwt`) or with the client's private key (`private_key_jwt`).
public
string
JWT_BEARER
= 'urn:ietf:params:oauth:client-assertion-type:jwt-bearer'
Defined by RFC 7523 §2.2.
SAML2_BEARER
`urn:ietf:params:oauth:client-assertion-type:saml2-bearer` — The `client_assertion` is a SAML 2.0 bearer assertion.
public
string
SAML2_BEARER
= 'urn:ietf:params:oauth:client-assertion-type:saml2-bearer'
Defined by RFC 7522 §2.2.