forked from Github-Mirrors/canaille
415 lines
15 KiB
Text
415 lines
15 KiB
Text
attributetype ( 1.3.6.1.4.1.56207.1.1.1 NAME 'oauthCode'
|
|
DESC 'OAuth 2.0 Authorization Code'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.2 NAME 'oauthClientID'
|
|
DESC 'Authorized client'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.3 NAME 'oauthRedirectURI'
|
|
DESC 'Authorization Code Redirection URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.4 NAME 'oauthResponseType'
|
|
DESC 'OAuth 2.0 response type'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.5 NAME 'oauthScope'
|
|
DESC 'OAuth 2.0 scope value'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.6 NAME 'oauthNonce'
|
|
DESC 'OAuth 2.0 nonce'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.7 NAME 'oauthAuthorizationDate'
|
|
DESC 'Access token issue date'
|
|
EQUALITY generalizedTimeMatch
|
|
ORDERING generalizedTimeOrderingMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.8 NAME 'oauthCodeChallenge'
|
|
DESC 'OAuth 2.0 code challenge'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.9 NAME 'oauthCodeChallengeMethod'
|
|
DESC 'OAuth 2.0 code challenge method'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.10 NAME 'oauthClientSecret'
|
|
DESC 'Client secret'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.11 NAME 'oauthClientSecretExpDate'
|
|
DESC 'Client secret expiration date/time'
|
|
EQUALITY generalizedTimeMatch
|
|
ORDERING generalizedTimeOrderingMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.12 NAME 'oauthIssueDate'
|
|
DESC 'Client identifier issue date/time'
|
|
EQUALITY generalizedTimeMatch
|
|
ORDERING generalizedTimeOrderingMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.13 NAME 'oauthGrantType'
|
|
DESC 'OAuth 2.0 grant type'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.14 NAME 'oauthTokenLifetime'
|
|
DESC 'OAuth 2.0 refresh token lifetime, in seconds'
|
|
EQUALITY integerMatch
|
|
ORDERING integerOrderingMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.15 NAME 'oauthClientName'
|
|
DESC 'Client name'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.16 NAME 'oauthClientContact'
|
|
DESC 'Client name'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.17 NAME 'oauthClientURI'
|
|
DESC 'Client URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.18 NAME 'oauthLogoURI'
|
|
DESC 'Logo URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.19 NAME 'oauthTermsOfServiceURI'
|
|
DESC 'Terms of service URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.20 NAME 'oauthPolicyURI'
|
|
DESC 'Policy URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.21 NAME 'oauthJWKURI'
|
|
DESC 'JWK set URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.22 NAME 'oauthJWK'
|
|
DESC 'JWK set JSON'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.23 NAME 'oauthSoftwareID'
|
|
DESC 'Software identifier'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.24 NAME 'oauthSoftwareVersion'
|
|
DESC 'Software version'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.25 NAME 'oauthToken'
|
|
DESC 'OAuth 2.0 Token'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.26 NAME 'oauthTokenType'
|
|
DESC 'OAuth 2.0 Token'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.27 NAME 'oauthAccessToken'
|
|
DESC 'OAuth 2.0 access token'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.28 NAME 'oauthRefreshToken'
|
|
DESC 'OAuth 2.0 refresh token'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.29 NAME 'oauthTokenEndpointAuthMethod'
|
|
DESC 'OAuth 2.0 Token endpoint authentication method'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0 Dynamic Client Registration Protocol' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.30 NAME 'oauthSubject'
|
|
DESC 'OAuth 2.0 Token subject'
|
|
EQUALITY distinguishedNameMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0 Dynamic Client Registration Protocol' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.31 NAME 'oauthRedirectURIs'
|
|
DESC 'Authorization Code Redirection URI'
|
|
EQUALITY caseIgnoreMatch
|
|
ORDERING caseIgnoreOrderingMatch
|
|
SUBSTR caseIgnoreSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.32 NAME 'oauthAuthorizationLifetime'
|
|
DESC 'OAuth 2.0 authorization code lifetime, in seconds'
|
|
EQUALITY integerMatch
|
|
ORDERING integerOrderingMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.27
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetype ( 1.3.6.1.4.1.56207.1.1.33 NAME 'oauthRevokationDate'
|
|
DESC 'Client identifier revokation date/time'
|
|
EQUALITY generalizedTimeMatch
|
|
ORDERING generalizedTimeOrderingMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.24
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetypes ( 1.3.6.1.4.1.56207.1.1.34 NAME 'oauthClient'
|
|
DESC 'Authorized client'
|
|
EQUALITY distinguishedNameMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetypes ( 1.3.6.1.4.1.56207.1.1.35 NAME 'oauthAudience'
|
|
DESC 'Token Audience'
|
|
EQUALITY distinguishedNameMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.12
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetypes ( 1.3.6.1.4.1.56207.1.1.36 NAME 'oauthPreconsent'
|
|
DESC 'OAuth client pre-consentment'
|
|
EQUALITY booleanMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.7
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetypes ( 1.3.6.1.4.1.56207.1.1.37 NAME 'oauthTokenID'
|
|
DESC 'OAuth 2.0 token identifier'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetypes ( 1.3.6.1.4.1.56207.1.1.38 NAME 'oauthAuthorizationCodeID'
|
|
DESC 'OAuth 2.0 authorization code identifier'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
attributetypes ( 1.3.6.1.4.1.56207.1.1.39 NAME 'oauthPostLogoutRedirectURI'
|
|
DESC 'OAuth 2.0 Post logout redirection URI'
|
|
EQUALITY caseExactMatch
|
|
ORDERING caseExactOrderingMatch
|
|
SUBSTR caseExactSubstringsMatch
|
|
SYNTAX 1.3.6.1.4.1.1466.115.121.1.15
|
|
SINGLE-VALUE
|
|
USAGE userApplications
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
objectclass ( 1.3.6.1.4.1.56207.1.2.1 NAME 'oauthClient'
|
|
DESC 'OAuth 2.0 Authorization Code'
|
|
SUP top
|
|
STRUCTURAL
|
|
MUST oauthClientID
|
|
MAY ( description $
|
|
oauthClientName $
|
|
oauthClientContact $
|
|
oauthClientURI $
|
|
oauthRedirectURIs $
|
|
oauthLogoURI $
|
|
oauthIssueDate $
|
|
oauthClientSecret $
|
|
oauthClientSecretExpDate $
|
|
oauthGrantType $
|
|
oauthResponseType $
|
|
oauthScope $
|
|
oauthTermsOfServiceURI $
|
|
oauthPolicyURI $
|
|
oauthJWKURI $
|
|
oauthJWK $
|
|
oauthTokenEndpointAuthMethod $
|
|
oauthSoftwareID $
|
|
oauthSoftwareVersion $
|
|
oauthAudience $
|
|
oauthPreconsent $
|
|
oauthPostLogoutRedirectURI )
|
|
)
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
objectclass ( 1.3.6.1.4.1.56207.1.2.2 NAME 'oauthAuthorizationCode'
|
|
DESC 'OAuth 2.0 Authorization Code'
|
|
SUP top
|
|
STRUCTURAL
|
|
MUST oauthAuthorizationCodeID
|
|
MAY ( description $
|
|
oauthCode $
|
|
oauthClient $
|
|
oauthSubject $
|
|
oauthRedirectURI $
|
|
oauthResponseType $
|
|
oauthScope $
|
|
oauthNonce $
|
|
oauthAuthorizationDate $
|
|
oauthAuthorizationLifetime $
|
|
oauthCodeChallenge $
|
|
oauthCodeChallengeMethod $
|
|
oauthRevokationDate )
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
objectclass ( 1.3.6.1.4.1.56207.1.2.3 NAME 'oauthToken'
|
|
DESC 'OAuth 2.0 Token'
|
|
SUP top
|
|
STRUCTURAL
|
|
MUST oauthTokenID
|
|
MAY ( description $
|
|
oauthClient $
|
|
oauthSubject $
|
|
oauthTokenType $
|
|
oauthAccessToken $
|
|
oauthRefreshToken $
|
|
oauthScope $
|
|
oauthIssueDate $
|
|
oauthTokenLifetime $
|
|
oauthRevokationDate $
|
|
oauthAudience )
|
|
X-ORIGIN 'OAuth 2.0' )
|
|
objectclass ( 1.3.6.1.4.1.56207.1.2.4 NAME 'oauthConsent'
|
|
DESC 'OAuth 2.0 User consents'
|
|
SUP top
|
|
STRUCTURAL
|
|
MUST (
|
|
cn $
|
|
oauthSubject $
|
|
oauthClient $
|
|
oauthScope
|
|
)
|
|
MAY (
|
|
oauthIssueDate $
|
|
oauthRevokationDate
|
|
)
|
|
X-ORIGIN 'OAuth 2.0' )
|