AssertionType
使用集合让一切井井有条
根据您的偏好保存内容并对其进行分类。
如未另行说明,那么本页面中的内容已根据知识共享署名 4.0 许可获得了许可,并且代码示例已根据 Apache 2.0 许可获得了许可。有关详情,请参阅 Google 开发者网站政策。Java 是 Oracle 和/或其关联公司的注册商标。
最后更新时间 (UTC):2025-07-26。
[null,null,["最后更新时间 (UTC):2025-07-26。"],[[["\u003cp\u003eThe app supports OpenIDConnect ID tokens (\u003ccode\u003eID_TOKEN\u003c/code\u003e) and a custom assertion type for account creation (\u003ccode\u003eACCOUNT_CREATION\u003c/code\u003e), both based on JWTs and utilizing Google Sign-In.\u003c/p\u003e\n"],["\u003cp\u003e\u003ccode\u003eID_TOKEN\u003c/code\u003e assertions are used for standard authentication flows, including linking to existing accounts, while \u003ccode\u003eACCOUNT_CREATION\u003c/code\u003e assertions specifically indicate new account creation intent.\u003c/p\u003e\n"],["\u003cp\u003eResponses to token requests using these assertions adhere to OAuth 2.0 standards for success and error handling as outlined in RFC6749.\u003c/p\u003e\n"],["\u003cp\u003eAn unknown assertion type (\u003ccode\u003eUNKNOWN_ASSERTION_TYPE\u003c/code\u003e) exists for backward compatibility but is rejected by the application.\u003c/p\u003e\n"]]],[],null,["# AssertionType\n\nAssertion types that the app can support at the token endpoint.\n\n| Enums ||\n|--------------------------|--------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------------|\n| `UNKNOWN_ASSERTION_TYPE` | Unknown assertion type for backwards compatability. Rejected. |\n| `ID_TOKEN` | OpenIDConnect ID token. This is JWT token with `grantType` set to `urn:ietf:params:oauth:grant-type:jwt-bearer`. This is the same token as produced by Google Sign-In libraries, and its verification is documented at \u003chttps://developers.google.com/identity/sign-in/web/backend-auth\u003e. For more information on JWT tokens, see \u003chttps://tools.ietf.org/html/rfc7523#section-2.1\u003e This token will include the non-standard key-value pair `intent=get` when the user attempts to link to an existing account. The response should be as per \u003chttps://tools.ietf.org/html/rfc6749#section-4.1.4\u003e in the event of success, and as per \u003chttps://tools.ietf.org/html/rfc6749#section-4.2.2.1\u003e in the event of error. |\n| `ACCOUNT_CREATION` | This is the same as `ID_TOKEN`, except that a non-standard key \"intent\" will be set to \"create\" indicating that the user is atempting to create a new account that should be associated with the Google ID in the `sub` field of the JWT, as with other usage of Google Sign-In. The responses are as with `ID_TOKEN`. |"]]
