cim/zitadel-oidc
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: append client id to aud

Browse source
This commit is contained in:
Fabiennne 2020-11-13 13:38:34 +01:00
parent 2370409a55
commit d6dab32393
1 changed files with 14 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

14
pkg/oidc/token.go
View file

@ -201,6 +201,7 @@ func EmptyIDTokenClaims() IDTokenClaims {
} }
func NewIDTokenClaims(issuer, subject string, audience []string, expiration, authTime time.Time, nonce string, acr string, amr []string, clientID string) IDTokenClaims { func NewIDTokenClaims(issuer, subject string, audience []string, expiration, authTime time.Time, nonce string, acr string, amr []string, clientID string) IDTokenClaims {
audience = AppendClientIDToAudience(clientID, audience)
return &idTokenClaims{ return &idTokenClaims{
Issuer: issuer, Issuer: issuer,
Audience: audience, Audience: audience,
@ -441,3 +442,16 @@ func ClaimHash(claim string, sigAlgorithm jose.SignatureAlgorithm) (string, erro
return utils.HashString(hash, claim, true), nil return utils.HashString(hash, claim, true), nil
} }
func AppendClientIDToAudience(clientID string, audience []string) []string {
exists := false
for _, aud := range audience {
if aud == clientID {
exists = true
}
}
if !exists {
audience = append(audience, clientID)
}
return audience
}