devstack/authorizer
4
0
Fork 0
Code Pull Requests Actions Activity

fix: add missing info for openid config

Browse Source 
Resolves #304
This commit is contained in:
Lakhan Samani 2023-03-04 16:11:37 +05:30
parent 8863140e75
commit 149d0cac7a
4 changed files with 3 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
server/handlers/jwks.go
View File

@ -27,10 +27,8 @@ func JWKsHandler() gin.HandlerFunc {
c.JSON(500, gin.H{ c.JSON(500, gin.H{
"error": err.Error(), "error": err.Error(),
}) })
return return
} }
c.JSON(200, gin.H{ c.JSON(200, gin.H{
"keys": []map[string]string{ "keys": []map[string]string{
data, data,

4
server/handlers/openid_config.go
View File

@ -20,9 +20,11 @@ func OpenIDConfigurationHandler() gin.HandlerFunc {
"token_endpoint": issuer + "/oauth/token", "token_endpoint": issuer + "/oauth/token",
"userinfo_endpoint": issuer + "/userinfo", "userinfo_endpoint": issuer + "/userinfo",
"jwks_uri": issuer + "/.well-known/jwks.json", "jwks_uri": issuer + "/.well-known/jwks.json",
"registration_endpoint": issuer + "/app",
"response_types_supported": []string{"code", "token", "id_token"}, "response_types_supported": []string{"code", "token", "id_token"},
"scopes_supported": []string{"openid", "email", "profile", "email_verified", "given_name", "family_name", "nick_name", "picture"}, "scopes_supported": []string{"openid", "email", "profile"},
"response_modes_supported": []string{"query", "fragment", "form_post", "web_message"}, "response_modes_supported": []string{"query", "fragment", "form_post", "web_message"},
"subject_types_supported": "public",
"id_token_signing_alg_values_supported": []string{jwtType}, "id_token_signing_alg_values_supported": []string{jwtType},
"claims_supported": []string{"aud", "exp", "iss", "iat", "sub", "given_name", "family_name", "middle_name", "nickname", "preferred_username", "picture", "email", "email_verified", "roles", "role", "gender", "birthdate", "phone_number", "phone_number_verified", "nonce", "updated_at", "created_at", "revoked_timestamp", "login_method", "signup_methods", "token_type"}, "claims_supported": []string{"aud", "exp", "iss", "iat", "sub", "given_name", "family_name", "middle_name", "nickname", "preferred_username", "picture", "email", "email_verified", "roles", "role", "gender", "birthdate", "phone_number", "phone_number_verified", "nonce", "updated_at", "created_at", "revoked_timestamp", "login_method", "signup_methods", "token_type"},
}) })

2
server/handlers/userinfo.go
View File

@ -2,7 +2,6 @@ package handlers
import ( import (
"encoding/json" "encoding/json"
"fmt"
"net/http" "net/http"
"github.com/gin-gonic/gin" "github.com/gin-gonic/gin"
@ -50,7 +49,6 @@ func UserInfoHandler() gin.HandlerFunc {
}) })
return return
} }
fmt.Println("=> str:", string(userBytes))
res := map[string]interface{}{} res := map[string]interface{}{}
err = json.Unmarshal(userBytes, &res) err = json.Unmarshal(userBytes, &res)
if err != nil { if err != nil {

1
server/token/auth_token.go
View File

@ -403,7 +403,6 @@ func CreateIDToken(user models.User, roles []string, hostname, nonce, atHash, cH
"login_method": loginMethod, "login_method": loginMethod,
claimKey: roles, claimKey: roles,
} }
// split nonce to see if its authorization code grant method // split nonce to see if its authorization code grant method
if cHash != "" { if cHash != "" {
customClaims["at_hash"] = atHash customClaims["at_hash"] = atHash