http4k-connect-amazon-cognito-fake/org.http4k.connect.amazon.cognito.oauth/CognitoPoolClientValidator

CognitoPoolClientValidator

class CognitoPoolClientValidator(storage: Storage<CognitoPool>) : ClientValidator

Constructors

constructor(storage: Storage<CognitoPool>)

Functions

validateClientId

open override fun validateClientId(request: Request, clientId: ClientId): Boolean

validateCredentials

open override fun validateCredentials(request: Request, clientId: ClientId, clientSecret: String): Boolean

We are non-strict here - we only check the secret if there was one generated. This will differ from real cognito (which would reject if an attempt was made to auth with a client with no secret)

validateRedirection

open override fun validateRedirection(request: Request, clientId: ClientId, redirectionUri: Uri): Boolean

validateScopes

open override fun validateScopes(request: Request, clientId: ClientId, scopes: List<String>): Boolean