fix: handle reauth correctly (max_age=0 or prompt=login) (#1870)

* max age * merge main * fix when no prompt is set * fix: update oidc pkg * fix tests
2025-08-12 01:27:32 +00:00 · 2021-06-16 10:02:15 +02:00
parent 1e1ded440c
commit 4a2ca5a1e8
7 changed files with 86 additions and 48 deletions
--- a/internal/api/oidc/client.go
+++ b/internal/api/oidc/client.go
@@ -80,7 +80,7 @@ func (o *OPStorage) GetKeyByIDAndIssuer(ctx context.Context, keyID, issuer strin
 	}, nil
 }

-func (o *OPStorage) ValidateJWTProfileScopes(ctx context.Context, subject string, scopes oidc.Scopes) (oidc.Scopes, error) {
+func (o *OPStorage) ValidateJWTProfileScopes(ctx context.Context, subject string, scopes []string) ([]string, error) {
 	user, err := o.repo.UserByID(ctx, subject)
 	if err != nil {
 		return nil, err