Added more to refresh token flow implementation

2025-12-20 03:27:02 -07:00 · 2024-03-18 16:03:37 -06:00 · 2024-03-18 16:03:37 -06:00 · c25e3e2e1e
commit c25e3e2e1e
parent 555d172ba6
4 changed files with 127 additions and 46 deletions
--- a/internal/login.go
+++ b/internal/login.go
@ -40,23 +40,33 @@ func Login(config *Config, client *oauth.Client, provider *oidc.IdentityProvider

 		// authorize oauth client and listen for callback from provider
 		fmt.Printf("Waiting for authorization code redirect @%s/oidc/callback...\n", server.GetListenAddr())
-		eps := flows.JwtBearerEndpoints{
-			Token:          config.Authorization.Endpoints.Token,
-			TrustedIssuers: config.Authorization.Endpoints.TrustedIssuers,
-			Register:       config.Authorization.Endpoints.Register,
-		}
-		params := flows.JwtBearerFlowParams{
-			Client:           oauth.NewClient(),
-			IdentityProvider: provider,
-			TrustedIssuer: &oauth.TrustedIssuer{
-				AllowAnySubject: false,
-				Issuer:          server.Addr,
-				Subject:         "opaal",
-				ExpiresAt:       time.Now().Add(time.Second * 3600),
+		params := server.ServerParams{
+			AuthProvider: &oidc.IdentityProvider{
+				Issuer: config.Authorization.Endpoints.Issuer,
+				Endpoints: oidc.Endpoints{
+					Config:  config.Authorization.Endpoints.Config,
+					JwksUri: config.Authorization.Endpoints.JwksUri,
+				},
 			},
 			Verbose: config.Options.Verbose,
+			JwtBearerFlowEndpoints: flows.JwtBearerEndpoints{
+				Token:          config.Authorization.Endpoints.Token,
+				TrustedIssuers: config.Authorization.Endpoints.TrustedIssuers,
+				Register:       config.Authorization.Endpoints.Register,
+			},
+			JwtBearerFlowParams: flows.JwtBearerFlowParams{
+				Client:           oauth.NewClient(),
+				IdentityProvider: provider,
+				TrustedIssuer: &oauth.TrustedIssuer{
+					AllowAnySubject: false,
+					Issuer:          server.Addr,
+					Subject:         "opaal",
+					ExpiresAt:       time.Now().Add(config.Authorization.TokenDuration),
+				},
+				Verbose: config.Options.Verbose,
+			},
 		}
-		err = server.Login(button, provider, client, eps, params)
+		err = server.Login(button, provider, client, params)
 		if errors.Is(err, http.ErrServerClosed) {
 			fmt.Printf("\n=========================================\nServer closed.\n=========================================\n\n")
 		} else if err != nil {