Function mas_oidc_client::requests::discovery::insecure_discover
source · pub async fn insecure_discover(
http_service: &HttpService,
issuer: &str,
) -> Result<VerifiedProviderMetadata, DiscoveryError>
Expand description
Fetch the provider metadata and make basic checks.
Contrary to discover()
, this uses
ProviderMetadata::insecure_verify_metadata()
to check the received
metadata instead of validating it according to the specification.
§Arguments
-
http_service
- The service to use for making HTTP requests. -
issuer
- The URL of the OpenID Connect Provider to fetch metadata for.
§Errors
Returns an error if the request fails or if the data is invalid.
§Warning
It is not recommended to use this method in production as it doesn’t ensure that the issuer implements the proper security practices.