mirror of
https://github.com/logto-io/logto.git
synced 2024-12-30 20:33:54 -05:00
feat(schemas): add grantTypes and responseTypes to app oidcClientMetadata
add grantTypes and responseTypes to app oidcClientMetadata
This commit is contained in:
parent
5aab7c01bf
commit
7b440d0248
2 changed files with 26 additions and 1 deletions
|
@ -1,6 +1,7 @@
|
|||
import { validateRedirectUrl } from '@logto/core-kit';
|
||||
import { z } from 'zod';
|
||||
|
||||
import { GrantType, ResponseType } from '../../types/oidc-config.js';
|
||||
import { type ToZodObject } from '../../utils/zod.js';
|
||||
|
||||
export const oidcModelInstancePayloadGuard = z
|
||||
|
@ -21,7 +22,7 @@ export type OidcClientMetadata = {
|
|||
/**
|
||||
* The redirect URIs that the client is allowed to use.
|
||||
*
|
||||
* @see {@link https://openid.net/specs/openid-connect-registration-1_0.html#ClientMetadata | OpenID Connect Dynamic Client Registration 1.0}
|
||||
* @see {@link https://openid.net/specs/openid-connect-registration-1_0.html#ClientMetadata | OpenID Connect Registration 1.0}
|
||||
*/
|
||||
redirectUris: string[];
|
||||
/**
|
||||
|
@ -43,6 +44,18 @@ export type OidcClientMetadata = {
|
|||
*/
|
||||
backchannelLogoutSessionRequired?: boolean;
|
||||
logoUri?: string;
|
||||
/**
|
||||
* The allowed grant types for the client.
|
||||
*
|
||||
* @see {@link https://openid.net/specs/openid-connect-core-1_0.html#ClientMetadata | OpenID Connect Registration 1.0}
|
||||
*/
|
||||
grantTypes?: GrantType[];
|
||||
/**
|
||||
* The allowed response types for the client.
|
||||
*
|
||||
* @see {@link https://openid.net/specs/openid-connect-core-1_0.html#ClientMetadata | OpenID Connect Registration 1.0}
|
||||
*/
|
||||
responseTypes?: ResponseType[];
|
||||
};
|
||||
|
||||
export const oidcClientMetadataGuard = z.object({
|
||||
|
@ -55,6 +68,8 @@ export const oidcClientMetadataGuard = z.object({
|
|||
backchannelLogoutUri: z.string().url().optional(),
|
||||
backchannelLogoutSessionRequired: z.boolean().optional(),
|
||||
logoUri: z.string().optional(),
|
||||
grantTypes: z.nativeEnum(GrantType).array().optional(),
|
||||
responseTypes: z.nativeEnum(ResponseType).array().optional(),
|
||||
}) satisfies ToZodObject<OidcClientMetadata>;
|
||||
|
||||
export enum CustomClientMetadataKey {
|
||||
|
|
|
@ -13,4 +13,14 @@ export enum GrantType {
|
|||
RefreshToken = 'refresh_token',
|
||||
ClientCredentials = 'client_credentials',
|
||||
TokenExchange = 'urn:ietf:params:oauth:grant-type:token-exchange',
|
||||
Implicit = 'implicit',
|
||||
}
|
||||
|
||||
export enum ResponseType {
|
||||
/** Authorization code flow */
|
||||
Code = 'code',
|
||||
/** Implicit flow */
|
||||
IdToken = 'id_token',
|
||||
/** Hybrid flow */
|
||||
HybridIdToken = 'code id_token',
|
||||
}
|
||||
|
|
Loading…
Reference in a new issue