diff options
author | Vivien Kraus <vivien@planete-kraus.eu> | 2021-09-26 10:46:27 +0200 |
---|---|---|
committer | Vivien Kraus <vivien@planete-kraus.eu> | 2021-10-01 12:32:20 +0200 |
commit | 8fb8ea2f9cec925ac58ef6dce9d114899eaf962e (patch) | |
tree | 64854062a9184cc957b7a70a422a609b3576fa32 /eu.planete_kraus.Disfluid.gschema.xml.in | |
parent | b0d75f5b0ccb4bbe90663bb22dc92daece8c5fcd (diff) |
gui: Add a gsettings schema
Diffstat (limited to 'eu.planete_kraus.Disfluid.gschema.xml.in')
-rw-r--r-- | eu.planete_kraus.Disfluid.gschema.xml.in | 96 |
1 files changed, 96 insertions, 0 deletions
diff --git a/eu.planete_kraus.Disfluid.gschema.xml.in b/eu.planete_kraus.Disfluid.gschema.xml.in new file mode 100644 index 0000000..c84aca8 --- /dev/null +++ b/eu.planete_kraus.Disfluid.gschema.xml.in @@ -0,0 +1,96 @@ +<schemalist> + <schema id="eu.planete_kraus.Disfluid.Client" gettext-domain="@PACKAGE@"> + <key name="client-id" type="s"> + <summary>Client ID</summary> + <description> + The client application needs a public presence on the + world-wide web so that the identity provider can check it is + not spoofed; this is the public URI where to obtain + machine-readable information about the application + </description> + <default>'https://webid-oidc-demo.planete-kraus.eu/example-application#id'</default> + </key> + <key name="key-pair" type="s"> + <summary>Client key pair</summary> + <description> + When creating new accounts, use this key pair to certify them + (in the JWK format); an empty value will generate a new key + pair + </description> + <default>''</default> + </key> + <key name="redirect-uri" type="s"> + <summary>Client redirect URI</summary> + <description> + When receiving an authorization, the user’s browser is + redirected to this URI, where the user should be presented + with a code to paste into the application + </description> + <default>'https://webid-oidc-demo.planete-kraus.eu/authorized'</default> + </key> + </schema> + <schema id="eu.planete_kraus.Disfluid.Account"> + <key name="subject" type="s"> + <summary>Account webid</summary> + <description> + The accounts are tied to a particular user, through a webid + </description> + <default>''</default> + </key> + <key name="issuer" type="s"> + <summary>Identity provider</summary> + <description> + The account is certified by the server running at this URI + </description> + <default>''</default> + </key> + <key name="key-pair" type="s"> + <summary>JWK key pair</summary> + <description> + Our account is certified to be used with a key pair that the + application owns; the key is in the JWK format + </description> + <default>''</default> + </key> + <key name="id-token-header" type="s"> + <summary>Header of the identity token</summary> + <description> + How we verified the signature of the ID token; if the account + needs to be refreshed then it may be empty + </description> + <default>''</default> + </key> + <key name="id-token" type="s"> + <summary>Identity token</summary> + <description> + The identity provider sent an ID token to remind us who you + are; if the account needs to be refreshed it may be empty + </description> + <default>''</default> + </key> + <key name="access-token" type="s"> + <summary>Access token</summary> + <description> + This token is presented to the resource server when we + authentify; it is bound to a key whose possession we need to + prove at the same time; if the account needs to be refreshed + it may be empty + </description> + <default>''</default> + </key> + <key name="refresh-token" type="s"> + <summary>Refresh token</summary> + <description> + When the account expires, we present this token to the + identity provider to refresh it; it is also bound to the key + pair; if the user did not give us refresh permission it may be + empty + </description> + <default>''</default> + </key> + </schema> + <schema id="eu.planete_kraus.Disfluid" path="/eu/planete_kraus/Disfluid/"> + <child name="client" schema="eu.planete_kraus.Disfluid.Client" /> + <child name="main-account" schema="eu.planete_kraus.Disfluid.Account" /> + </schema> +</schemalist> |