feat: add OIDC feature support. (#373)

1. add nonce parameter.
2. add sub in userinfo endpoint.

Signed-off-by: 0x2a <stevesough@gmail.com>

controllers/account.go

@@ -61,6 +61,7 @@ type RequestForm struct {
 type Response struct {
 	Status string      `json:"status"`
 	Msg    string      `json:"msg"`
+	Sub    string      `json:"sub"`
 	Data   interface{} `json:"data"`
 	Data2  interface{} `json:"data2"`
 }
@@ -217,8 +218,14 @@ func (c *ApiController) GetAccount() {
 	}
 
 	organization := object.GetMaskedOrganization(object.GetOrganizationByUser(user))
-
-	c.ResponseOk(user, organization)
+	resp := Response{
+		Status: "ok",
+		Sub:    userId,
+		Data:   user,
+		Data2:  organization,
+	}
+	c.Data["json"] = resp
+	c.ServeJSON()
 }
 
 // GetHumanCheck ...

controllers/auth.go

@@ -51,8 +51,8 @@ func (c *ApiController) HandleLoggedIn(application *object.Application, user *ob
 		redirectUri := c.Input().Get("redirectUri")
 		scope := c.Input().Get("scope")
 		state := c.Input().Get("state")
-
-		code := object.GetOAuthCode(userId, clientId, responseType, redirectUri, scope, state)
+		nonce := c.Input().Get("nonce")
+		code := object.GetOAuthCode(userId, clientId, responseType, redirectUri, scope, state, nonce)
 		resp = codeToResponse(code)
 
 		if application.HasPromptPage() {

controllers/token.go

@@ -136,8 +136,9 @@ func (c *ApiController) GetOAuthCode() {
 	redirectUri := c.Input().Get("redirect_uri")
 	scope := c.Input().Get("scope")
 	state := c.Input().Get("state")
+	nonce := c.Input().Get("nonce")
 
-	c.Data["json"] = object.GetOAuthCode(userId, clientId, responseType, redirectUri, scope, state)
+	c.Data["json"] = object.GetOAuthCode(userId, clientId, responseType, redirectUri, scope, state, nonce)
 	c.ServeJSON()
 }