Mercurial > prosody-modules
comparison mod_http_oauth2/mod_http_oauth2.lua @ 5400:71766a4a7322
mod_http_oauth2: Reduce line count of metadata construction
More compact and readable than long if-then chains
author | Kim Alvefur <zash@zash.se> |
---|---|
date | Tue, 02 May 2023 16:14:22 +0200 |
parents | 89c9e9bba60d |
children | c8d04ac200fc |
comparison
equal
deleted
inserted
replaced
5399:89c9e9bba60d | 5400:71766a4a7322 |
---|---|
17 local array = require "util.array"; | 17 local array = require "util.array"; |
18 local st = require "util.stanza"; | 18 local st = require "util.stanza"; |
19 | 19 |
20 local function b64url(s) | 20 local function b64url(s) |
21 return (base64.encode(s):gsub("[+/=]", { ["+"] = "-", ["/"] = "_", ["="] = "" })) | 21 return (base64.encode(s):gsub("[+/=]", { ["+"] = "-", ["/"] = "_", ["="] = "" })) |
22 end | |
23 | |
24 local function tmap(t) | |
25 return function(k) | |
26 return t[k]; | |
27 end | |
22 end | 28 end |
23 | 29 |
24 local function read_file(base_path, fn, required) | 30 local function read_file(base_path, fn, required) |
25 local f, err = io.open(base_path .. "/" .. fn); | 31 local f, err = io.open(base_path .. "/" .. fn); |
26 if not f then | 32 if not f then |
954 response_types_supported = array(it.keys(response_type_handlers)); | 960 response_types_supported = array(it.keys(response_type_handlers)); |
955 token_endpoint_auth_methods_supported = array({ "client_secret_post"; "client_secret_basic" }); | 961 token_endpoint_auth_methods_supported = array({ "client_secret_post"; "client_secret_basic" }); |
956 revocation_endpoint = handle_revocation_request and module:http_url() .. "/revoke" or nil; | 962 revocation_endpoint = handle_revocation_request and module:http_url() .. "/revoke" or nil; |
957 revocation_endpoint_auth_methods_supported = array({ "client_secret_basic" }); | 963 revocation_endpoint_auth_methods_supported = array({ "client_secret_basic" }); |
958 code_challenge_methods_supported = array(it.keys(verifier_transforms)); | 964 code_challenge_methods_supported = array(it.keys(verifier_transforms)); |
959 grant_types_supported = array(it.keys(response_type_handlers)):map(function(h) | 965 grant_types_supported = array(it.keys(response_type_handlers)):map(tmap { token = "implicit"; code = "authorization_code" }); |
960 if h == "token" then | 966 response_modes_supported = array(it.keys(response_type_handlers)):map(tmap { token = "fragment"; code = "query" }); |
961 return "implicit" | |
962 elseif h == "code" then | |
963 return "authorization_code" | |
964 end | |
965 end); | |
966 response_modes_supported = array(it.keys(response_type_handlers)):map(function(h) | |
967 if h == "token" then | |
968 return "fragment" | |
969 elseif h == "code" then | |
970 return "query" | |
971 end | |
972 end); | |
973 authorization_response_iss_parameter_supported = true; | 967 authorization_response_iss_parameter_supported = true; |
974 | 968 |
975 -- OpenID | 969 -- OpenID |
976 userinfo_endpoint = handle_register_request and module:http_url() .. "/userinfo" or nil; | 970 userinfo_endpoint = handle_register_request and module:http_url() .. "/userinfo" or nil; |
977 id_token_signing_alg_values_supported = { "HS256" }; | 971 id_token_signing_alg_values_supported = { "HS256" }; |