mirror of
https://github.com/casdoor/casdoor.git
synced 2025-07-09 01:13:41 +08:00
Add data to oidcDiscovery.
This commit is contained in:
Yang Luo
@ -11,4 +11,5 @@ defaultStorageProvider =
|
|||||||
authState = "casdoor"
|
authState = "casdoor"
|
||||||
httpProxy = "127.0.0.1:10808"
|
httpProxy = "127.0.0.1:10808"
|
||||||
verificationCodeTimeout = 10
|
verificationCodeTimeout = 10
|
||||||
initScore = 2000
|
initScore = 2000
|
||||||
|
oidcOrigin = "https://door.casbin.com"
|
||||||
@ -14,9 +14,17 @@
|
|||||||
|
|
||||||
package object
|
package object
|
||||||
|
|
||||||
|
import (
|
||||||
|
"fmt"
|
||||||
|
|
||||||
|
"github.com/astaxie/beego"
|
||||||
|
)
|
||||||
|
|
||||||
type OidcDiscovery struct {
|
type OidcDiscovery struct {
|
||||||
Issuer string `json:"issuer"`
|
Issuer string `json:"issuer"`
|
||||||
AuthorizationEndpoint string `json:"authorization_endpoint"`
|
AuthorizationEndpoint string `json:"authorization_endpoint"`
|
||||||
|
TokenEndpoint string `json:"token_endpoint"`
|
||||||
|
UserinfoEndpoint string `json:"userinfo_endpoint"`
|
||||||
JwksUri string `json:"jwks_uri"`
|
JwksUri string `json:"jwks_uri"`
|
||||||
ResponseTypesSupported []string `json:"response_types_supported"`
|
ResponseTypesSupported []string `json:"response_types_supported"`
|
||||||
ResponseModesSupported []string `json:"response_modes_supported"`
|
ResponseModesSupported []string `json:"response_modes_supported"`
|
||||||
@ -32,19 +40,28 @@ type OidcDiscovery struct {
|
|||||||
var oidcDiscovery OidcDiscovery
|
var oidcDiscovery OidcDiscovery
|
||||||
|
|
||||||
func init() {
|
func init() {
|
||||||
|
oidcOrigin := beego.AppConfig.String("oidcOrigin")
|
||||||
|
|
||||||
|
// Examples:
|
||||||
|
// https://login.okta.com/.well-known/openid-configuration
|
||||||
|
// https://auth0.auth0.com/.well-known/openid-configuration
|
||||||
|
// https://accounts.google.com/.well-known/openid-configuration
|
||||||
|
// https://access.line.me/.well-known/openid-configuration
|
||||||
oidcDiscovery = OidcDiscovery{
|
oidcDiscovery = OidcDiscovery{
|
||||||
Issuer: "",
|
Issuer: oidcOrigin,
|
||||||
AuthorizationEndpoint: "",
|
AuthorizationEndpoint: fmt.Sprintf("%s/api/login/oauth/authorize", oidcOrigin),
|
||||||
JwksUri: "",
|
TokenEndpoint: fmt.Sprintf("%s/api/login/oauth/access_token", oidcOrigin),
|
||||||
ResponseTypesSupported: nil,
|
UserinfoEndpoint: fmt.Sprintf("%s/api/get-account", oidcOrigin),
|
||||||
ResponseModesSupported: nil,
|
JwksUri: fmt.Sprintf("%s/api/certs", oidcOrigin),
|
||||||
GrantTypesSupported: nil,
|
ResponseTypesSupported: []string{"id_token"},
|
||||||
SubjectTypesSupported: nil,
|
ResponseModesSupported: []string{"login", "code", "link"},
|
||||||
IdTokenSigningAlgValuesSupported: nil,
|
GrantTypesSupported: []string{"password", "authorization_code"},
|
||||||
ScopesSupported: nil,
|
SubjectTypesSupported: []string{"public"},
|
||||||
ClaimsSupported: nil,
|
IdTokenSigningAlgValuesSupported: []string{"RS256"},
|
||||||
RequestParameterSupported: false,
|
ScopesSupported: []string{"openid", "email", "profile", "address", "phone", "offline_access"},
|
||||||
RequestObjectSigningAlgValuesSupported: nil,
|
ClaimsSupported: []string{"iss", "ver", "sub", "aud", "iat", "exp", "id", "type", "displayName", "avatar", "permanentAvatar", "email", "phone", "location", "affiliation", "title", "homepage", "bio", "tag", "region", "language", "score", "ranking", "isOnline", "isAdmin", "isGlobalAdmin", "isForbidden", "signupApplication", "ldap"},
|
||||||
|
RequestParameterSupported: true,
|
||||||
|
RequestObjectSigningAlgValuesSupported: []string{"HS256", "HS384", "HS512"},
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
|
|||||||
Reference in New Issue
Block a user