Mercurial > prosody-modules
changeset 5397:18b57e91b5e5
mod_http_oauth2: Advertise revocation endpoint in metadata
How were you supposed to know this was supported otherwise?
It support Basic auth and ... none?
| author | Kim Alvefur <zash@zash.se> |
|---|---|
| date | Tue, 02 May 2023 15:41:36 +0200 |
| parents | ac7c5669e5f5 |
| children | 38da5ca498dd |
| files | mod_http_oauth2/mod_http_oauth2.lua |
| diffstat | 1 files changed, 2 insertions(+), 0 deletions(-) [+] |
line wrap: on
line diff
--- a/mod_http_oauth2/mod_http_oauth2.lua Sun Apr 30 17:04:55 2023 +0200 +++ b/mod_http_oauth2/mod_http_oauth2.lua Tue May 02 15:41:36 2023 +0200 @@ -953,6 +953,8 @@ scopes_supported = usermanager.get_all_roles and array(it.keys(usermanager.get_all_roles(module.host))):append(array(openid_claims:items())); response_types_supported = array(it.keys(response_type_handlers)); token_endpoint_auth_methods_supported = array({ "client_secret_post"; "client_secret_basic" }); + revocation_endpoint = handle_revocation_request and module:http_url() .. "/revoke" or nil; + revocation_endpoint_auth_methods_supported = array({ "client_secret_basic" }); code_challenge_methods_supported = array(it.keys(verifier_transforms)); authorization_response_iss_parameter_supported = true;