Class: IssuerAuthorizationRequestClass

An Authorization Request that provides shared claims and other user/session data to GOV.UK One Login credential issuers.

__

JSON schema: IssuerAuthorizationRequest.json

__

URI: di_vocab:class/IssuerAuthorizationRequestClass

classDiagram class IssuerAuthorizationRequestClass click IssuerAuthorizationRequestClass href "../../classes/IssuerAuthorizationRequestClass/" AuthorizationRequestClass <|-- IssuerAuthorizationRequestClass click AuthorizationRequestClass href "../../classes/AuthorizationRequestClass/" IssuerAuthorizationRequestClass : aud IssuerAuthorizationRequestClass : client_id IssuerAuthorizationRequestClass : evidence_requested IssuerAuthorizationRequestClass --> "0..1" EvidenceRequestedClass : evidence_requested click EvidenceRequestedClass href "../../classes/EvidenceRequestedClass/" IssuerAuthorizationRequestClass : exp IssuerAuthorizationRequestClass : govuk_signin_journey_id IssuerAuthorizationRequestClass : iat IssuerAuthorizationRequestClass : iss IssuerAuthorizationRequestClass : jti IssuerAuthorizationRequestClass : nbf IssuerAuthorizationRequestClass : nonce IssuerAuthorizationRequestClass : redirect_uri IssuerAuthorizationRequestClass : response_type IssuerAuthorizationRequestClass : scope IssuerAuthorizationRequestClass : shared_claims IssuerAuthorizationRequestClass --> "0..1" IdentityCheckSubjectClass : shared_claims click IdentityCheckSubjectClass href "../../classes/IdentityCheckSubjectClass/" IssuerAuthorizationRequestClass : state IssuerAuthorizationRequestClass : sub

Inheritance

JWTClass
- AuthorizationRequestClass
  - IssuerAuthorizationRequestClass

Slots

Name	Cardinality and Range	Description	Inheritance
shared_claims	0..1 IdentityCheckSubjectClass	The shared claims	direct
govuk_signin_journey_id	0..1 String	The journey id value as assigned by the GOV	direct
evidence_requested	0..1 EvidenceRequestedClass		direct
response_type	1 String	The response type	AuthorizationRequestClass
scope	1 String	The scope	AuthorizationRequestClass
client_id	1 StringOrURI	The client id	AuthorizationRequestClass
state	1 String	The state	AuthorizationRequestClass
redirect_uri	1 Uri	The redirect uri	AuthorizationRequestClass
nonce	1 String	The nonce	AuthorizationRequestClass
iss	0..1 Uri	The `iss` (issuer) claim identifies the principal that issued the JWT	JWTClass
sub	0..1 Uri	The `sub` (subject) claim identifies the principal that is the subject of the...	JWTClass
nbf	0..1 Integer	The `nbf` (not before) claim identifies the time the JWT is valid from	JWTClass
exp	0..1 Integer	The `exp` (expiration time) claim identifies the time the JWT expires	JWTClass
aud	0..1 Uri	The `aud` (audience) claim identifies the recipients that the JWT is intended...	JWTClass
iat	0..1 Integer	The `iat` (issued at) claim identifies the time at which the JWT was issued	JWTClass
jti	0..1 Uri	The `jti` (JWT ID) claim identifies the unique identifier of the JWT	JWTClass

Identifier and Mapping Information

Schema Source

from schema: https://vocab.account.gov.uk/linkml/credentials-schema

Mappings

Mapping Type	Mapped Value
self	di_vocab:IssuerAuthorizationRequestClass
native	di_vocab:IssuerAuthorizationRequestClass

LinkML Source

Direct

name: IssuerAuthorizationRequestClass
description: 'An Authorization Request that provides shared claims and other user/session
  data to GOV.UK One Login credential issuers.


  JSON schema: [IssuerAuthorizationRequest.json](../json-schemas/IssuerAuthorizationRequest.json)

  '
from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
see_also:
- ../json-schemas/IssuerAuthorizationRequest.json
is_a: AuthorizationRequestClass
slots:
- shared_claims
- govuk_signin_journey_id
- evidence_requested

Induced

name: IssuerAuthorizationRequestClass
description: 'An Authorization Request that provides shared claims and other user/session
  data to GOV.UK One Login credential issuers.


  JSON schema: [IssuerAuthorizationRequest.json](../json-schemas/IssuerAuthorizationRequest.json)

  '
from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
see_also:
- ../json-schemas/IssuerAuthorizationRequest.json
is_a: AuthorizationRequestClass
attributes:
  shared_claims:
    name: shared_claims
    description: The shared claims.  This value will detail what shared information
      the calling service wants to and is permitted to share.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: shared_claims
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - IssuerAuthorizationRequestClass
    range: IdentityCheckSubjectClass
  govuk_signin_journey_id:
    name: govuk_signin_journey_id
    description: The journey id value as assigned by the GOV.UK account sign in process.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: govuk_signin_journey_id
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - IssuerAuthorizationRequestClass
    range: string
  evidence_requested:
    name: evidence_requested
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: evidence_requested
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - IssuerAuthorizationRequestClass
    range: EvidenceRequestedClass
  response_type:
    name: response_type
    description: The response type.  This value currently needs to be set to the value
      `code`.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: response_type
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: string
    required: true
  scope:
    name: scope
    description: The scope.  A space-separated list of scopes which must include the
      `openid` value. Other options are `email`, `phone` and `offline_access` (returns
      a refresh token).  Other custom scopes are available for internal requests.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: scope
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - AuthorizationRequestClass
    - OpenIDConnectAuthenticationRequestClass
    range: string
    required: true
  client_id:
    name: client_id
    description: The client id.  This value is the client id the Relying Party service
      was provided with for identification upon registration.  Internal system requests
      will use an internal client id.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: client_id
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: StringOrURI
    required: true
  state:
    name: state
    description: The state.  This value is used to validate the response sent to the
      redirect URI.  This value will be returned to the client in the authentication
      response.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: state
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: string
    required: true
  redirect_uri:
    name: redirect_uri
    description: The redirect uri.  This value must exactly match one of the redirect
      uris registered by the Relying Party service and must be URL-encoded.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: redirect_uri
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: uri
    required: true
  nonce:
    name: nonce
    description: The nonce.  A random value provided from the ID token to verify the
      integrity of the ID token.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: nonce
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - AuthorizationRequestClass
    range: string
    required: true
  iss:
    name: iss
    description: The `iss` (issuer) claim identifies the principal that issued the
      JWT.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: iss
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: uri
  sub:
    name: sub
    description: The `sub` (subject) claim identifies the principal that is the subject
      of the JWT.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: sub
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: uri
  nbf:
    name: nbf
    description: The `nbf` (not before) claim identifies the time the JWT is valid
      from.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: nbf
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: integer
  exp:
    name: exp
    description: The `exp` (expiration time) claim identifies the time the JWT expires.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: exp
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: integer
  aud:
    name: aud
    description: The `aud` (audience) claim identifies the recipients that the JWT
      is intended for.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: aud
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: uri
  iat:
    name: iat
    description: The `iat` (issued at) claim identifies the time at which the JWT
      was issued.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: iat
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: integer
  jti:
    name: jti
    description: The `jti` (JWT ID) claim identifies the unique identifier of the
      JWT.
    from_schema: https://vocab.account.gov.uk/linkml/credentials-schema
    rank: 1000
    alias: jti
    owner: IssuerAuthorizationRequestClass
    domain_of:
    - JWTClass
    range: uri