Class: IdentityAuthorisationRequestClass

An Identity Authorization Request that provides shared claims and other user/session data.

__

JSON schema: IdentityAuthorisationRequest.json

__

URI: di_vocab:class/IdentityAuthorisationRequestClass

classDiagram class IdentityAuthorisationRequestClass click IdentityAuthorisationRequestClass href "../../classes/IdentityAuthorisationRequestClass/" AuthorizationRequestClass <|-- IdentityAuthorisationRequestClass click AuthorizationRequestClass href "../../classes/AuthorizationRequestClass/" IdentityAuthorisationRequestClass : aud IdentityAuthorisationRequestClass : claims IdentityAuthorisationRequestClass : client_id IdentityAuthorisationRequestClass : exp IdentityAuthorisationRequestClass : govuk_signin_journey_id IdentityAuthorisationRequestClass : iat IdentityAuthorisationRequestClass : iss IdentityAuthorisationRequestClass : jti IdentityAuthorisationRequestClass : nbf IdentityAuthorisationRequestClass : nonce IdentityAuthorisationRequestClass : redirect_uri IdentityAuthorisationRequestClass : response_type IdentityAuthorisationRequestClass : scope IdentityAuthorisationRequestClass : state IdentityAuthorisationRequestClass : sub IdentityAuthorisationRequestClass : vtr

Inheritance

JWTClass
- AuthorizationRequestClass
  - IdentityAuthorisationRequestClass

Slots

Name	Cardinality and Range	Description	Inheritance
govuk_signin_journey_id	0..1 String	The journey id value as assigned by the GOV	direct
vtr	* String	The Vector of Trust request	direct
claims	0..1 String	The claims	direct
response_type	1 String	The response type	AuthorizationRequestClass
scope	1 String	The scope	AuthorizationRequestClass
client_id	1 StringOrURI	The client id	AuthorizationRequestClass
state	1 String	The state	AuthorizationRequestClass
redirect_uri	1 Uri	The redirect uri	AuthorizationRequestClass
nonce	1 String	The nonce	AuthorizationRequestClass
iss	0..1 Uri	The `iss` (issuer) claim identifies the principal that issued the JWT	JWTClass
sub	0..1 Uri	The `sub` (subject) claim identifies the principal that is the subject of the...	JWTClass
nbf	0..1 Integer	The `nbf` (not before) claim identifies the time the JWT is valid from	JWTClass
exp	0..1 Integer	The `exp` (expiration time) claim identifies the time the JWT expires	JWTClass
aud	0..1 Uri	The `aud` (audience) claim identifies the recipients that the JWT is intended...	JWTClass
iat	0..1 Integer	The `iat` (issued at) claim identifies the time at which the JWT was issued	JWTClass
jti	0..1 Uri	The `jti` (JWT ID) claim identifies the unique identifier of the JWT	JWTClass

Identifier and Mapping Information

Schema Source

from schema: https://vocab.account.gov.uk/linkml/credentials-schema

Mappings

Mapping Type	Mapped Value
self	di_vocab:IdentityAuthorisationRequestClass
native	di_vocab:IdentityAuthorisationRequestClass

LinkML Source

Direct

name: IdentityAuthorisationRequestClass
description: 'An Identity Authorization Request that provides shared claims and other
  user/session data.


  JSON schema: [IdentityAuthorisationRequest.json](../json-schemas/IdentityAuthorisationRequest.json)

  '
from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
see_also:
- ../json-schemas/IdentityAuthorisationRequest.json
is_a: AuthorizationRequestClass
slots:
- govuk_signin_journey_id
- vtr
- claims

Induced

name: IdentityAuthorisationRequestClass
description: 'An Identity Authorization Request that provides shared claims and other
  user/session data.


  JSON schema: [IdentityAuthorisationRequest.json](../json-schemas/IdentityAuthorisationRequest.json)

  '
from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
see_also:
- ../json-schemas/IdentityAuthorisationRequest.json
is_a: AuthorizationRequestClass
attributes:
  govuk_signin_journey_id:
    name: govuk_signin_journey_id
    description: The journey id value as assigned by the GOV.UK account sign in process.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: govuk_signin_journey_id
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - IdentityAuthorisationRequestClass
    - IssuerAuthorizationRequestClass
    range: string
  vtr:
    name: vtr
    description: The Vector of Trust request. If not specified the default value `Cl.Cm`
      is used. Further information can be found in [Vectors of Trust RFC](https://datatracker.ietf.org/doc/rfc8485/)
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: vtr
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - OpenIDConnectAuthenticationRequestClass
    - IdentityAuthorisationRequestClass
    range: string
    multivalued: true
    inlined: true
    inlined_as_list: true
  claims:
    name: claims
    description: The claims.  This value will detail what additional claims, if any,
      are required from the /userinfo endpoint after a successful authentication request.  This
      value should be URL-encoded JSON.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: claims
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - OpenIDConnectAuthenticationRequestClass
    - IdentityAuthorisationRequestClass
    range: string
  response_type:
    name: response_type
    description: The response type.  This value currently needs to be set to the value
      `code`.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: response_type
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: string
    required: true
  scope:
    name: scope
    description: The scope.  A space-separated list of scopes which must include the
      `openid` value. Other options are `email`, `phone` and `offline_access` (returns
      a refresh token).  Other custom scopes are available for internal requests.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: scope
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - AuthorizationRequestClass
    - OpenIDConnectAuthenticationRequestClass
    range: string
    required: true
  client_id:
    name: client_id
    description: The client id.  This value is the client id the Relying Party service
      was provided with for identification upon registration.  Internal system requests
      will use an internal client id.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: client_id
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: StringOrURI
    required: true
  state:
    name: state
    description: The state.  This value is used to validate the response sent to the
      redirect URI.  This value will be returned to the client in the authentication
      response.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: state
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: string
    required: true
  redirect_uri:
    name: redirect_uri
    description: The redirect uri.  This value must exactly match one of the redirect
      uris registered by the Relying Party service and must be URL-encoded.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: redirect_uri
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: uri
    required: true
  nonce:
    name: nonce
    description: The nonce.  A random value provided from the ID token to verify the
      integrity of the ID token.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: nonce
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: string
    required: true
  iss:
    name: iss
    description: The `iss` (issuer) claim identifies the principal that issued the
      JWT.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: iss
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: uri
  sub:
    name: sub
    description: The `sub` (subject) claim identifies the principal that is the subject
      of the JWT.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: sub
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: uri
  nbf:
    name: nbf
    description: The `nbf` (not before) claim identifies the time the JWT is valid
      from.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: nbf
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: integer
  exp:
    name: exp
    description: The `exp` (expiration time) claim identifies the time the JWT expires.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: exp
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: integer
  aud:
    name: aud
    description: The `aud` (audience) claim identifies the recipients that the JWT
      is intended for.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: aud
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: uri
  iat:
    name: iat
    description: The `iat` (issued at) claim identifies the time at which the JWT
      was issued.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: iat
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: integer
  jti:
    name: jti
    description: The `jti` (JWT ID) claim identifies the unique identifier of the
      JWT.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: jti
    owner: IdentityAuthorisationRequestClass
    domain_of:
    - JWTClass
    range: uri