Skip to content

chore: update of openid-client implementation #381

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
merged 5 commits into from
Feb 7, 2025
Merged

chore: update of openid-client implementation #381

merged 5 commits into from
Feb 7, 2025
+366 −327

Conversation

basmasking
Copy link
Member

@basmasking basmasking commented Feb 7, 2025
edited
Loading

Fixes #364
Closes #379

Changes proposed in this pull request:

  • The openid-client has changed the way their api works, so a rewrite of our implementation was necessary.
  • Added additional configuration to allow insecure requests for local development

@MaskingTechnology/comify

@basmasking basmasking linked an issue Feb 7, 2025 that may be closed by this pull request
Upgrade openid client implementation #364
Closed
petermasking
petermasking requested changes Feb 7, 2025
View reviewed changes
src/integrations/authentication/implementations/openid/OpenID.ts Outdated
Comment on lines 30 to 31
readonly #configuration: OpenIDConfiguration;
#config?: Configuration;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Both names might be clear on their own, but combined their quite confusing...

Suggested change
readonly #configuration: OpenIDConfiguration;
#config?: Configuration;
readonly #providerConfiguration: OpenIDConfiguration;
#clientConfiguration?: Configuration;

src/integrations/authentication/implementations/openid/OpenID.ts Outdated

const tokenSet = await client.callback(redirectUri, data);
const userinfo = await client.userinfo(tokenSet.access_token as string);
const sub = claims!.sub as string;
Copy link
Member

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

According to the docs, the claims can be undefined when the auth server doesn't return a expires_in value. Shouldn't we check this?

@sonarqubecloud SonarQubeCloud
Copy link

sonarqubecloud bot commented Feb 7, 2025

Quality Gate Passed Quality Gate passed

Issues
0 New issues
0 Accepted issues

Measures
0 Security Hotspots
0.0% Coverage on New Code
0.0% Duplication on New Code

See analysis details on SonarQube Cloud

@petermasking petermasking merged commit 64468c0 into main Feb 7, 2025
6 checks passed
@petermasking petermasking deleted the 364-upgrade-openid-client-implementation branch February 7, 2025 22:27
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@petermasking petermasking petermasking approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

Upgrade openid client implementation
2 participants
@basmasking @petermasking