API Reference nova_auth_oidc v#0.1.1
View SourceModules
Behaviour for OIDC provider configuration. Implementing modules define provider endpoints, client credentials, scopes, and claims mapping.
Client credentials flow for machine-to-machine authentication. Obtains and caches access tokens using the OAuth2 client credentials grant.
Nova controller for OpenID Connect authentication flows.
Token introspection (RFC 7662). Checks if an access token is active at the provider (e.g., not revoked or expired).
Validates OIDC ID tokens (JWTs) against provider configuration.
Nova plugin that protects routes by checking for an authenticated actor
in the session. Uses nova_auth_actor for session storage, making it
compatible with any auth strategy.
Nova security callbacks for OIDC-protected routes. Extends the base
nova_auth_security with JWT bearer validation.
Supervisor for OIDC provider configuration workers. Each provider gets its
own oidcc_provider_configuration_worker child that fetches and caches
the provider's discovery document and JWKS.