comparison mod_http_oauth2/mod_http_oauth2.lua @ 5397:18b57e91b5e5

mod_http_oauth2: Advertise revocation endpoint in metadata How were you supposed to know this was supported otherwise? It support Basic auth and ... none?
author Kim Alvefur <zash@zash.se>
date Tue, 02 May 2023 15:41:36 +0200
parents ac7c5669e5f5
children 38da5ca498dd
comparison
equal deleted inserted replaced
5396:ac7c5669e5f5 5397:18b57e91b5e5
951 jwks_uri = nil; -- TODO? 951 jwks_uri = nil; -- TODO?
952 registration_endpoint = handle_register_request and module:http_url() .. "/register" or nil; 952 registration_endpoint = handle_register_request and module:http_url() .. "/register" or nil;
953 scopes_supported = usermanager.get_all_roles and array(it.keys(usermanager.get_all_roles(module.host))):append(array(openid_claims:items())); 953 scopes_supported = usermanager.get_all_roles and array(it.keys(usermanager.get_all_roles(module.host))):append(array(openid_claims:items()));
954 response_types_supported = array(it.keys(response_type_handlers)); 954 response_types_supported = array(it.keys(response_type_handlers));
955 token_endpoint_auth_methods_supported = array({ "client_secret_post"; "client_secret_basic" }); 955 token_endpoint_auth_methods_supported = array({ "client_secret_post"; "client_secret_basic" });
956 revocation_endpoint = handle_revocation_request and module:http_url() .. "/revoke" or nil;
957 revocation_endpoint_auth_methods_supported = array({ "client_secret_basic" });
956 code_challenge_methods_supported = array(it.keys(verifier_transforms)); 958 code_challenge_methods_supported = array(it.keys(verifier_transforms));
957 authorization_response_iss_parameter_supported = true; 959 authorization_response_iss_parameter_supported = true;
958 960
959 -- OpenID 961 -- OpenID
960 userinfo_endpoint = handle_register_request and module:http_url() .. "/userinfo" or nil; 962 userinfo_endpoint = handle_register_request and module:http_url() .. "/userinfo" or nil;