Namespace reeflogic::reef_server_common::oidc_validator_config C++ API Reference¶

Headers at a Glance¶

Header reef_server_common/oidc_validator_config.h¶

Shared mapping from t_identity_provider_oidcs rows to OidcTokenValidator::Config.

Centralizes the row-to-config translation that reeflogic_server_admin and reeflogic_server both run when loading OIDC IdP bindings. DbTextToValidatorTokenMode maps the schema-controlled oidc_token_mode enum text into the runtime commons::OidcTokenValidator::TokenMode, DecryptIntrospectionSecretFromStorageOrThrow AES-GCM-decrypts t_identity_provider_oidcs.introspection_client_secret with the process commons::SecretKey (AAD pinned to kOidcIntrospectionSecretDbAad), and MapRowToOidcValidatorConfig assembles the full Config for a row returned by the canonical admin/tenant SELECT statements.

(unknown token_mode, base64 decode failure). Each consuming server wraps the call once in its own db_operation_utility.cc and rethrows as its per-server Server*DbOperationError.

Note: Throws commons::DbOperationError when DB-side state is malformed

See also: commons/oidc_token_validator.h, server_survey/db_operation_utility.h

Macros¶