cim/zitadel-oidc
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: aud

Browse source
This commit is contained in:
adlerhurst 2020-09-10 16:24:48 +02:00
parent 9d8fc4fe8a
commit a731a46ccf
4 changed files with 17 additions and 14 deletions
Download patch file Download diff file Expand all files Collapse all files

14
pkg/oidc/authorization.go
View file

@ -150,12 +150,12 @@ type AccessTokenResponse struct {
}
type JWTTokenRequest struct {
Issuer string `json:"iss"`
Subject string `json:"sub"`
Scopes Scopes `json:"scope"`
Audience []string `json:"aud"`
IssuedAt Time `json:"iat"`
ExpiresAt Time `json:"exp"`
Issuer string `json:"iss"`
Subject string `json:"sub"`
Scopes Scopes `json:"scope"`
Audience interface{} `json:"aud"`
IssuedAt Time `json:"iat"`
ExpiresAt Time `json:"exp"`
}
func (j *JWTTokenRequest) GetClientID() string {
@ -186,7 +186,7 @@ func (j *JWTTokenRequest) GetIssuer() string {
}
func (j *JWTTokenRequest) GetAudience() []string {
return j.Audience
return audienceFromJSON(j.Audience)
}
func (j *JWTTokenRequest) GetExpiration() time.Time {

2
pkg/oidc/verifier.go
View file

@ -97,7 +97,7 @@ func CheckIssuer(issuer string, i Verifier) error {
func CheckAudience(audiences []string, i Verifier) error {
if !utils.Contains(audiences, i.ClientID()) {
return fmt.Errorf("%w: Audience must contain client_id (%s)", ErrAudience, i.ClientID())
return fmt.Errorf("%w: Audience must contain client_id %q", ErrAudience, i.ClientID())
}
//TODO: check aud trusted