feat: app handling compliance (#527)

* feat: check oidc compliance * fix: add tests * fix: add oidc config tests * fix: add oidc config tests user agent * fix: test oidc config compliance * fix: test oidc config compliance * fix: useragent implicit authmethod none * fix: merge master * feat: translate compliance problems * feat: check native app for custom url * fix: better compliance handling * fix: better compliance handling * feat: add odidc dev mode * fix: remove deprecated request fro management api * fix: oidc package version * fix: migration * fix: tests * fix: remove unused functions * fix: generate proto files * fix: native implicit and code none compliant * fix: create project * Update internal/project/model/oidc_config_test.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: tests * Update internal/project/model/oidc_config.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * Update internal/project/model/oidc_config.go Co-authored-by: Livio Amstutz <livio.a@gmail.com> * fix: tests Co-authored-by: Livio Amstutz <livio.a@gmail.com>
2025-08-12 00:57:33 +00:00 · 2020-08-10 09:34:56 +02:00
parent 64f0b191b5
commit 5699fe80d5
27 changed files with 15925 additions and 16502 deletions
--- a/internal/api/oidc/client_converter.go
+++ b/internal/api/oidc/client_converter.go
@@ -1,6 +1,7 @@
 package oidc

 import (
+	"github.com/caos/oidc/pkg/oidc"
 	"time"

 	"github.com/caos/oidc/pkg/op"
@@ -27,7 +28,7 @@ func (c *Client) ApplicationType() op.ApplicationType {
 	return op.ApplicationType(c.OIDCApplicationType)
 }

-func (c *Client) GetAuthMethod() op.AuthMethod {
+func (c *Client) AuthMethod() op.AuthMethod {
 	return authMethodToOIDC(c.OIDCAuthMethodType)
 }

@@ -47,6 +48,14 @@ func (c *Client) PostLogoutRedirectURIs() []string {
 	return c.OIDCPostLogoutRedirectUris
 }

+func (c *Client) ResponseTypes() []oidc.ResponseType {
+	return responseTypesToOIDC(c.OIDCResponseTypes)
+}
+
+func (c *Client) DevMode() bool {
+	return c.ApplicationView.DevMode
+}
+
 func (c *Client) AccessTokenLifetime() time.Duration {
 	return c.defaultAccessTokenLifetime //PLANNED: impl from real client
 }
@@ -71,3 +80,24 @@ func authMethodToOIDC(authType model.OIDCAuthMethodType) op.AuthMethod {
 		return op.AuthMethodBasic
 	}
 }
+
+func responseTypesToOIDC(responseTypes []model.OIDCResponseType) []oidc.ResponseType {
+	oidcTypes := make([]oidc.ResponseType, len(responseTypes))
+	for i, t := range responseTypes {
+		oidcTypes[i] = responseTypeToOIDC(t)
+	}
+	return oidcTypes
+}
+
+func responseTypeToOIDC(responseType model.OIDCResponseType) oidc.ResponseType {
+	switch responseType {
+	case model.OIDCResponseTypeCode:
+		return oidc.ResponseTypeCode
+	case model.OIDCResponseTypeIDTokenToken:
+		return oidc.ResponseTypeIDToken
+	case model.OIDCResponseTypeIDToken:
+		return oidc.ResponseTypeIDTokenOnly
+	default:
+		return oidc.ResponseTypeCode
+	}
+}