dani/lemonldap-ng
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Test token endpoint auth method (#1082)

Browse Source
This commit is contained in:
Clément Oudot 2016-09-08 08:26:15 +00:00
parent d9a2070f2e
commit 1eec474abd
1 changed files with 6 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
lemonldap-ng-portal/lib/Lemonldap/NG/Portal/_OpenIDConnect.pm
View File

@ -407,6 +407,11 @@ sub getAuthorizationCodeAccessToken {
$self->{_oidcOPList}->{$op}->{conf}->{token_endpoint};
my $grant_type = "authorization_code";
unless ( $auth_method =~ /^client_secret_(basic|post)$/o ) {
$self->lmLog( "Bad authentication method on token endpoint", 'error' );
return 0;
}
$self->lmLog(
"Using auth method $auth_method to token endpoint $access_token_uri",
'debug' );
@ -1148,8 +1153,7 @@ sub getAttributesListFromClaim {
$attributes->{phone} = [qw/phone_number phone_number_verified/];
# Additional claims
my $extraClaims =
$self->{oidcRPMetaDataOptionsExtraClaims}->{$rp};
my $extraClaims = $self->{oidcRPMetaDataOptionsExtraClaims}->{$rp};
if ($extraClaims) {
foreach my $claim ( keys %$extraClaims ) {