prosody-modules: mod_http_oauth2/mod_http

comparison mod_http_oauth2/mod_http_oauth2.lua @ 5766:b8a2b3ebe792

mod_http_oauth2: Return validation output added in trunk rev 72d7830505f0 It's not fun at all to try to register a client and only get back "failed schema validation", this should help with that.

author	Kim Alvefur <zash@zash.se>
date	Sun, 03 Dec 2023 23:44:18 +0100
parents	87920d436cb4
children	a967bb4972c5

comparison

equal deleted inserted replaced

-:78368d2865dd
+:b8a2b3ebe792
 		return uri.scheme == "https" and uri.host == client_uri.host;
 	end
 end
 function create_client(client_metadata)
-	if not schema.validate(registration_schema, client_metadata) then
+	local valid, validation_errors = schema.validate(registration_schema, client_metadata);
-		return nil, oauth_error("invalid_request", "Failed schema validation.");
+	if not valid then
+		return nil, errors.new({
+			type = "modify";
+			condition = "bad-request";
+			code = 400;
+			text = "Failed schema validation.";
+			extra = {
+				oauth2_response = {
+					error = "invalid_request";
+					error_description = "Client registration data failed schema validation."; -- TODO Generate from validation_errors?
+					-- JSON Schema Output Format
+					-- https://json-schema.org/draft/2020-12/draft-bhutton-json-schema-01#name-basic
+					valid = false;
+					errors = validation_errors;
+				};
+			};
+		});
 	end
 	local client_uri = url.parse(client_metadata.client_uri);
 	if not client_uri or client_uri.scheme ~= "https" or loopbacks:contains(client_uri.host) then
 		return nil, oauth_error("invalid_client_metadata", "Missing, invalid or insecure client_uri");

Mercurial > prosody-modules

comparison mod_http_oauth2/mod_http_oauth2.lua @ 5766:b8a2b3ebe792