prosody-modules: mod_http_oauth2/mod_http

comparison mod_http_oauth2/mod_http_oauth2.lua @ 5365:698fef74ce53

mod_http_oauth2: Allow only l10n variants of name in client metadata Since "client_name" seems to be the only human readable non-URI property that makes sense to have localized version of. Therefore it seems excessive to allow arbitrary additionalProperties. We don't make use of localized versions of client_name and URIs yet, but it would be nice to do so.

author	Kim Alvefur <zash@zash.se>
date	Tue, 25 Apr 2023 17:38:36 +0200
parents	0444953e3247
children	db4c66a1d24b

comparison

equal deleted inserted replaced

-:0444953e3247
+:698fef74ce53
 		jwks_uri = { type = "string"; format = "uri"; luaPattern = "^https:" };
 		jwks = { type = "object"; description = "JSON Web Key Set, RFC 7517" };
 		software_id = { type = "string"; format = "uuid" };
 		software_version = { type = "string" };
 	};
-	-- Localized versions of descriptive properties and URIs
+	luaPatternProperties = {
-	luaPatternProperties = { ["^[a-z_]+_uri#"] = { type = "string"; format = "uri"; luaPattern = "^https:" } };
+		-- Localized versions of descriptive properties and URIs
-	additionalProperties = { type = "string" };
+		["^client_name#"] = { description = "Localized version of 'client_name'"; type = "string" };
+		["^[a-z_]+_uri#"] = { type = "string"; format = "uri"; luaPattern = "^https:" };
+	};
 }
 function create_client(client_metadata)
 	if not schema.validate(registration_schema, client_metadata) then
 		return nil, oauth_error("invalid_request", "Failed schema validation.");

Mercurial > prosody-modules

comparison mod_http_oauth2/mod_http_oauth2.lua @ 5365:698fef74ce53