Removed the client authorization for client credentials flow

2025-12-20 03:27:02 -07:00 · 2024-03-25 14:24:37 -06:00 · 2024-03-25 14:24:37 -06:00 · 1565717c7e
commit 1565717c7e
parent d0f8c9087d
1 changed files with 16 additions and 0 deletions
--- a/internal/flows/jwt_bearer.go
+++ b/internal/flows/jwt_bearer.go
@ -238,6 +238,22 @@ func NewJwtBearerFlow(eps JwtBearerEndpoints, params JwtBearerFlowParams) (strin
 	return string(res), nil
 }
 func NewRefreshToken(issuer string, audience string, duration time.Duration) jwt.Token {
 	// create a new, one-time use JWT with no scopes
 	payload := map[string]any{}
 	payload["iss"] = issuer
 	payload["aud"] = audience
 	payload["iat"] = time.Now().Unix()
 	payload["nbf"] = time.Now().Unix()
 	payload["exp"] = time.Now().Add(duration).Unix()
 	payload["sub"] = "opaal"
 	payloadJson, err := json.Marshal(payload)
 	if err != nil {
 		return "", fmt.Errorf("failed to marshal payload: %v", err)
 	}
 	jws.Sign(payloadJson, jws.WithJSON(), jws.WithKey(jwa.RS256, privateJwk))
 }
 func ForwardToken(eps JwtBearerEndpoints, params JwtBearerFlowParams) error {
 	var (
 		client  = params.Client