fix: rp: wrong assignment in WithIssuedAtMaxAge

WithIssuedAtMaxAge assigned its value to v.maxAge, which was wrong. This change fixes that by assiging the duration to v.maxAgeIAT.
2023-03-06 11:40:55 +02:00 · 2023-03-06 11:40:55 +02:00 · 6e9d8739e8
commit 6e9d8739e8
parent ef5a8a2e3a
2 changed files with 5 additions and 5 deletions
--- a/pkg/client/rp/verifier.go
+++ b/pkg/client/rp/verifier.go
@ -141,7 +141,7 @@ func WithIssuedAtOffset(offset time.Duration) func(*idTokenVerifier) {
 // WithIssuedAtMaxAge provides the ability to define the maximum duration between iat and now
 func WithIssuedAtMaxAge(maxAge time.Duration) func(*idTokenVerifier) {
 	return func(v *idTokenVerifier) {
-		v.maxAge = maxAge
+		v.maxAgeIAT = maxAge
 	}
 }
--- a/pkg/client/rp/verifier_test.go
+++ b/pkg/client/rp/verifier_test.go
@ -310,7 +310,7 @@ func TestNewIDTokenVerifier(t *testing.T) {
 				keySet:   tu.KeySet{},
 				options: []VerifierOption{
 					WithIssuedAtOffset(time.Minute),
-					//WithIssuedAtMaxAge(time.Hour),
+					WithIssuedAtMaxAge(time.Hour),
 					WithNonce(nil), // otherwise assert.Equal will fail on the function
 					WithACRVerifier(nil),
 					WithAuthTimeMaxAge(2 * time.Hour),
@ -320,7 +320,7 @@ func TestNewIDTokenVerifier(t *testing.T) {
 			want: &idTokenVerifier{
 				issuer:            tu.ValidIssuer,
 				offset:            time.Minute,
-				//maxAgeIAT:         time.Hour, // Maybe BUG?
+				maxAgeIAT:         time.Hour,
 				clientID:          tu.ValidClientID,
 				keySet:            tu.KeySet{},
 				nonce:             nil,