root
/
rabbitmq-server
mirror of https://github.com/rabbitmq/rabbitmq-server.git
1
0
Fork 0
Code Issues Actions 5 Packages Projects Releases Wiki Activity

Add tokeninfo_endpoint

This commit is contained in:
Marcial Rosales 2025-05-29 14:44:22 +02:00
parent ae3fbbcb0a
commit b71aaab61d
4 changed files with 20 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
deps/oauth2_client/include/types.hrl vendored
View File

@ -25,6 +25,7 @@
issuer :: option(uri_string:uri_string()), issuer :: option(uri_string:uri_string()),
discovery_endpoint :: option(uri_string:uri_string()), discovery_endpoint :: option(uri_string:uri_string()),
token_endpoint :: option(uri_string:uri_string()), token_endpoint :: option(uri_string:uri_string()),
tokeninfo_endpoint :: option(uri_string:uri_string()),
authorization_endpoint :: option(uri_string:uri_string()), authorization_endpoint :: option(uri_string:uri_string()),
end_session_endpoint :: option(uri_string:uri_string()), end_session_endpoint :: option(uri_string:uri_string()),
jwks_uri :: option(uri_string:uri_string()), jwks_uri :: option(uri_string:uri_string()),

9
deps/oauth2_client/src/oauth2_client.erl vendored
View File

@ -144,10 +144,15 @@ merge_oauth_provider(OAuthProvider, Proplist) ->
EndSessionEndpoint -> [{end_session_endpoint, EndSessionEndpoint} | EndSessionEndpoint -> [{end_session_endpoint, EndSessionEndpoint} |
proplists:delete(end_session_endpoint, Proplist1)] proplists:delete(end_session_endpoint, Proplist1)]
end, end,
case OAuthProvider#oauth_provider.jwks_uri of Proplist3 = case OAuthProvider#oauth_provider.tokeninfo_endpoint of
undefined -> Proplist2; undefined -> Proplist2;
TokenInfoEndpoint -> [{tokeninfo_endpoint, TokenInfoEndpoint} |
proplists:delete(tokeninfo_endpoint, Proplist2)]
end,
case OAuthProvider#oauth_provider.jwks_uri of
undefined -> Proplist3;
JwksEndPoint -> [{jwks_uri, JwksEndPoint} | JwksEndPoint -> [{jwks_uri, JwksEndPoint} |
proplists:delete(jwks_uri, Proplist2)] proplists:delete(jwks_uri, Proplist3)]
end. end.
parse_openid_configuration_response({error, Reason}) -> parse_openid_configuration_response({error, Reason}) ->

11
deps/rabbitmq_auth_backend_oauth2/priv/schema/rabbitmq_auth_backend_oauth2.schema vendored
View File

@ -200,6 +200,11 @@
rabbit_oauth2_schema:translate_endpoint_params("discovery_endpoint_params", Conf) rabbit_oauth2_schema:translate_endpoint_params("discovery_endpoint_params", Conf)
end}. end}.
{mapping,
"auth_oauth2.tokeninfo_endpoint",
"rabbitmq_auth_backend_oauth2.tokeninfo_endpoint",
[{datatype, string}, {validators, ["uri", "https_uri"]}]}.
{mapping, {mapping,
"auth_oauth2.oauth_providers.$name.discovery_endpoint_params.$param", "auth_oauth2.oauth_providers.$name.discovery_endpoint_params.$param",
"rabbitmq_auth_backend_oauth2.oauth_providers", "rabbitmq_auth_backend_oauth2.oauth_providers",
@ -291,6 +296,12 @@
[{datatype, string}, {validators, ["uri", "https_uri"]}] [{datatype, string}, {validators, ["uri", "https_uri"]}]
}. }.
{mapping,
"auth_oauth2.oauth_providers.$name.tokeninfo_endpoint",
"rabbitmq_auth_backend_oauth2.oauth_providers",
[{datatype, string}, {validators, ["uri", "https_uri"]}]
}.
{mapping, {mapping,
"auth_oauth2.oauth_providers.$name.jwks_uri", "auth_oauth2.oauth_providers.$name.jwks_uri",
"rabbitmq_auth_backend_oauth2.oauth_providers", "rabbitmq_auth_backend_oauth2.oauth_providers",

1
deps/rabbitmq_auth_backend_oauth2/src/rabbit_oauth2_schema.erl vendored
View File

@ -253,6 +253,7 @@ mapOauthProviderProperty({Key, Value}) ->
{Key, case Key of {Key, case Key of
issuer -> validator_https_uri(Key, Value); issuer -> validator_https_uri(Key, Value);
token_endpoint -> validator_https_uri(Key, Value); token_endpoint -> validator_https_uri(Key, Value);
tokeninfo_endpoint -> validator_https_uri(Key, Value);
jwks_uri -> validator_https_uri(Key, Value); jwks_uri -> validator_https_uri(Key, Value);
end_session_endpoint -> validator_https_uri(Key, Value); end_session_endpoint -> validator_https_uri(Key, Value);
authorization_endpoint -> validator_https_uri(Key, Value); authorization_endpoint -> validator_https_uri(Key, Value);