OIDC-Client

This distribution makes it easy to integrate the OpenID Connect protocol into different types of Perl applications.

You can use the OIDC::Client module directly for any batch or script. For use from within an application, you should instead use the framework plugin :

Features

builds the authorization URL
retrieves the provider metadata and JWK keys when the application is launched
gets the token(s) from the provider
refreshes the access token
verifies a JWT token with support for automatic JWK key rotation
gets the user information from the userinfo endpoint
exchanges the access token

Documentation Index

Security Recommendation

When using OIDC-Client with an application, it is highly recommended to configure the framework to store session data, including sensitive tokens such as access and refresh tokens, on the backend rather than in client-side cookies. Although cookies can be signed and encrypted, storing tokens in the client exposes them to potential security threats.

Limitations

no multi-audience support
no support for Implicit or Hybrid flows (applicable to front-end applications only and deprecated)

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)