state_store_get_remove

Retrieves the state-bound values from the client's <code>state_store</code> and removes
the entry to enforce single-use semantics.

internal

Provides a simple, configurable, provider-agnostic 'OAuth 2.0' and
'OpenID Connect' (OIDC) authentication framework for 'shiny' applications
using 'S7' classes. Defines providers, clients, and tokens, as well
as various supporting functions and a 'shiny' module. Features include
cross-site request forgery (CSRF) protection, state encryption,
'Proof Key for Code Exchange' (PKCE) handling, validation of OIDC identity
tokens (nonces, signatures, claims), automatic user info retrieval, asynchronous
flows, and hooks for audit logging.

Luka Koning

shinyOAuth

Provider-Agnostic OAuth Authentication for 'shiny' Applications

state_store_get_remove function

<dl><dt>client</dt>
<dd>OAuthClient instance</dd>
<dt>state</dt>
<dd>Plain (decrypted) state string used as the logical key</dd>
<dt>shiny_session</dt>
<dd>Optional pre-captured Shiny session context (from
<code>capture_shiny_session_context()</code>) to include in audit events. Used when
calling from async workers that lack access to the reactive domain.</dd></dl>

Arguments

Fetch and remove the single-use state entry — state_store_get_remove

<dl>

<dt>client</dt>
<dd>OAuthClient instance</dd>


<dt>state</dt>
<dd>Plain (decrypted) state string used as the logical key</dd>


<dt>shiny_session</dt>
<dd>Optional pre-captured Shiny session context (from
<code>capture_shiny_session_context()</code>) to include in audit events. Used when
calling from async workers that lack access to the reactive domain.</dd>

</dl>

state_store_get_remove: Fetch and remove the single-use state entry

Description

Usage

Value

Arguments