Module: OmniauthOpenidFederation::Constants
- Defined in:
- lib/omniauth_openid_federation/constants.rb
Constant Summary collapse
- KEY_ROTATION_HTTP_CODES =
HTTP status codes that indicate key-related errors (possible key rotation)
[401, 403, 404].freeze
- REQUEST_OBJECT_EXPIRATION_SECONDS =
Request object expiration time in seconds (10 minutes)
600- MAX_RETRY_DELAY_SECONDS =
Maximum retry delay in seconds (prevents unbounded retry delays)
60- MAX_STRING_LENGTH =
Maximum string length for request parameters (8KB) Prevents DoS attacks while allowing legitimate use cases (e.g., encrypted JWT authorization codes) Use Configuration.config.max_string_length for runtime configuration instead of patching this constant
8192