Mercurial > prosody-modules
comparison mod_http_oauth2/mod_http_oauth2.lua @ 5202:b81fd0d22c66
mod_http_oauth2: Calculate client secret expiry in registration response
Not actually the client_secret that expires, but the client_id JWT.
Returning '0' indicating no expiry was incorrect unless JWT expiry is
turned off, which we check for now.
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Sat, 04 Mar 2023 17:06:47 +0100 |
| parents | 47576c73eedf |
| children | c60cff787d6a |
comparison
equal
deleted
inserted
replaced
| 5201:47576c73eedf | 5202:b81fd0d22c66 |
|---|---|
| 421 client_id = client_id; | 421 client_id = client_id; |
| 422 client_secret = client_secret; | 422 client_secret = client_secret; |
| 423 client_id_issued_at = os.time(); | 423 client_id_issued_at = os.time(); |
| 424 client_secret_expires_at = 0; | 424 client_secret_expires_at = 0; |
| 425 } | 425 } |
| 426 if not registration_options.accept_expired then | |
| 427 client_desc.client_secret_expires_at = client_desc.client_id_issued_at + (registration_options.default_ttl or 3600); | |
| 428 end | |
| 426 | 429 |
| 427 return { | 430 return { |
| 428 status_code = 201; | 431 status_code = 201; |
| 429 headers = { content_type = "application/json" }; | 432 headers = { content_type = "application/json" }; |
| 430 body = json.encode(client_desc); | 433 body = json.encode(client_desc); |