fix(oidc): return clients without instance settings (#7036)

2025-08-12 03:37:34 +00:00 · 2023-12-07 11:43:45 +02:00
parent fb235d7ea1
commit 2e505f40f9
12 changed files with 126 additions and 39 deletions
--- a/internal/api/oidc/client.go
+++ b/internal/api/oidc/client.go
@@ -927,6 +927,12 @@ func (s *Server) VerifyClient(ctx context.Context, r *op.Request[op.ClientCreden
 	if client.State != domain.AppStateActive {
 		return nil, oidc.ErrInvalidClient().WithDescription("client is not active")
 	}
+	if client.Settings == nil {
+		client.Settings = &query.OIDCSettings{
+			AccessTokenLifetime: s.defaultAccessTokenLifetime,
+			IdTokenLifetime:     s.defaultIdTokenLifetime,
+		}
+	}

 	switch client.AuthMethodType {
 	case domain.OIDCAuthMethodTypeBasic, domain.OIDCAuthMethodTypePost: