public static enum AuthorizationFailRequest.Reason extends Enum<AuthorizationFailRequest.Reason>
Enum Constant and Description |
---|
ACCOUNT_SELECTION_REQUIRED
The authorization server cannot obtain an account selection choice
made by the end-user.
|
ACR_NOT_SATISFIED
The authorization request from the client application contained
"acr" claim in "claims" request parameter and
the claim was marked as essential, but the ACR performed for the
end-user does not match any one of the requested ACRs. |
CONSENT_REQUIRED
The authorization server cannot obtain consent from the end-user.
|
DENIED
The end-user denied the authorization request from the client
application.
|
DIFFERENT_SUBJECT
The authorization request from the client application requested
a specific value for
sub claim, but the current end-user
(in the case of prompt=none ) or the end-user after the
authentication is different from the specified value. |
EXCEEDS_MAX_AGE
The authorization request from the client application contained
prompt=none , but the time specified by max_age
request parameter or by default_max_age configuration
parameter has passed since the time at which the end-user logged
in. |
INTERACTION_REQUIRED
The authorization server needs interaction with the end-user.
|
INVALID_TARGET
The requested resource is invalid, missing, unknown, or malformed.
|
MAX_AGE_NOT_SUPPORTED
The authorization request from the client application contained
max_age parameter with a non-zero value or the client's
configuration has a non-zero value for default_max_age
configuration parameter, but the service implementation cannot
behave properly based on the max age value mainly because the
service implementation does not manage authentication time of
end-users. |
NOT_AUTHENTICATED
The end-user was not authenticated.
|
NOT_LOGGED_IN
The authorization request from the client application contained
prompt=none , but any end-user has not logged in. |
SERVER_ERROR
Server error.
|
UNKNOWN
Unknown reason.
|
Modifier and Type | Method and Description |
---|---|
static AuthorizationFailRequest.Reason |
valueOf(String name)
Returns the enum constant of this type with the specified name.
|
static AuthorizationFailRequest.Reason[] |
values()
Returns an array containing the constants of this enum type, in
the order they are declared.
|
public static final AuthorizationFailRequest.Reason UNKNOWN
Using this reason will result in error=server_error
.
public static final AuthorizationFailRequest.Reason NOT_LOGGED_IN
prompt=none
, but any end-user has not logged in.
See "OpenID Connect Core 1.0, 3.1.2.1. Authentication Request"
for prompt
request parameter.
Using this reason will result in error=login_required
.
public static final AuthorizationFailRequest.Reason MAX_AGE_NOT_SUPPORTED
max_age
parameter with a non-zero value or the client's
configuration has a non-zero value for default_max_age
configuration parameter, but the service implementation cannot
behave properly based on the max age value mainly because the
service implementation does not manage authentication time of
end-users.
See "OpenID Connect Core 1.0, 3.1.2.1. Authentication Request"
for max_age
request parameter.
See "OpenID Connect Dynamic Client Registration 1.0, 2. Client Metadata"
for default_max_age
configuration parameter.
Using this reason will result in error=login_required
.
public static final AuthorizationFailRequest.Reason EXCEEDS_MAX_AGE
prompt=none
, but the time specified by max_age
request parameter or by default_max_age
configuration
parameter has passed since the time at which the end-user logged
in.
See "OpenID Connect Core 1.0, 3.1.2.1. Authentication Request"
for prompt
and max_age
request parameters.
See "OpenID Connect Dynamic Client Registration 1.0, 2. Client Metadata"
for default_max_age
configuration parameter.
Using this reason will result in error=login_required
.
public static final AuthorizationFailRequest.Reason DIFFERENT_SUBJECT
sub
claim, but the current end-user
(in the case of prompt=none
) or the end-user after the
authentication is different from the specified value.
Using this reason will result in error=login_required
.
public static final AuthorizationFailRequest.Reason ACR_NOT_SATISFIED
"acr"
claim in "claims"
request parameter and
the claim was marked as essential, but the ACR performed for the
end-user does not match any one of the requested ACRs.
Using this reason will result in error=login_required
when the version of your Authlete server is 2.2 or older.
Otherwise, this reason will result in
error=unmet_authentication_requirements
. See "OpenID Connect Core Error Code unmet_authentication_requirements"
for details about unmet_authentication_requirements
.
public static final AuthorizationFailRequest.Reason DENIED
Using this reason will result in error=access_denied
.
public static final AuthorizationFailRequest.Reason SERVER_ERROR
Using this reason will result in error=server_error
.
public static final AuthorizationFailRequest.Reason NOT_AUTHENTICATED
Using this reason will result in error=login_required
.
public static final AuthorizationFailRequest.Reason ACCOUNT_SELECTION_REQUIRED
Using this reason will result in error=account_selection_required
.
public static final AuthorizationFailRequest.Reason CONSENT_REQUIRED
Using this reason will result in error=consent_required
.
public static final AuthorizationFailRequest.Reason INTERACTION_REQUIRED
Using this reason will result in error=interaction_required
.
public static final AuthorizationFailRequest.Reason INVALID_TARGET
Using this reason will result in error=invalid_target
.
public static AuthorizationFailRequest.Reason[] values()
for (AuthorizationFailRequest.Reason c : AuthorizationFailRequest.Reason.values()) System.out.println(c);
public static AuthorizationFailRequest.Reason valueOf(String name)
name
- the name of the enum constant to be returned.IllegalArgumentException
- if this enum type has no constant with the specified nameNullPointerException
- if the argument is nullCopyright © 2023. All rights reserved.