OpenID Connect Library for Rust

This library provides extensible, strongly-typed interfaces for the OpenID Connect protocol.

API documentation and examples are available on docs.rs.

Standards

• OpenID Connect Core
  • This crate passes the Relying Party Certification conformance tests for response_type=code
  • Supported features:
    • Relying Party flows: code, implicit, hybrid
    • Standard claims
    • UserInfo endpoint
    • RSA, HMAC, and ECDSA (P-256/P-384 curves) ID token verification
  • Unsupported features:
    • Aggregated and distributed claims
    • Passing request parameters as JWTs
    • Verification of the azp claim (see discussion)
    • ECDSA-based ID token verification using the P-521 curve
    • JSON Web Encryption (JWE)
• OpenID Connect Discovery
  • Supported features:
    • Provider Metadata
  • Unsupported features:
    • WebFinger
• OpenID Connect Dynamic Client Registration
  • Supported features:
    • Client Metadata
    • Client Registration endpoint
  • Unsupported features:
    • Client Configuration endpoint
• OAuth 2.0 Token Introspection
• OAuth 2.0 Token Revocation