diff --git a/packages/core/src/oidc/adapter.ts b/packages/core/src/oidc/adapter.ts index 209aaa9f2..e71627bb5 100644 --- a/packages/core/src/oidc/adapter.ts +++ b/packages/core/src/oidc/adapter.ts @@ -13,14 +13,20 @@ import { upsertInstance, } from '@/queries/oidc-model-instance'; +import { getApplicationTypeString } from './utils'; + export default function postgresAdapter(modelName: string): ReturnType { if (modelName === 'Client') { const reject = async () => Promise.reject(new Error('Not implemented')); const transpileClient = ({ - id, + id: client_id, + name: client_name, + type, oidcClientMetadata, }: ApplicationDBEntry): AllClientMetadata => ({ - client_id: id, + client_id, + client_name, + application_type: getApplicationTypeString(type), grant_types: ['authorization_code', 'refresh_token'], token_endpoint_auth_method: 'none', ...snakecaseKeys(oidcClientMetadata), diff --git a/packages/core/src/oidc/utils.ts b/packages/core/src/oidc/utils.ts index 68fd56902..9663fbae8 100644 --- a/packages/core/src/oidc/utils.ts +++ b/packages/core/src/oidc/utils.ts @@ -1,14 +1,10 @@ import { ApplicationType, OidcClientMetadata } from '@logto/schemas'; -const getApplicationTypeString = (type: ApplicationType) => +export const getApplicationTypeString = (type: ApplicationType) => type === ApplicationType.Native ? 'native' : 'web'; -export const buildOidcClientMetadata = ( - type: ApplicationType, - metadata?: OidcClientMetadata -): OidcClientMetadata => ({ +export const buildOidcClientMetadata = (metadata?: OidcClientMetadata): OidcClientMetadata => ({ redirectUris: [], postLogoutRedirectUris: [], ...metadata, - applicationType: getApplicationTypeString(type), }); diff --git a/packages/core/src/routes/application.ts b/packages/core/src/routes/application.ts index 01b83d84f..fbfd0e73c 100644 --- a/packages/core/src/routes/application.ts +++ b/packages/core/src/routes/application.ts @@ -37,7 +37,7 @@ export default function applicationRoutes(router: T) { id: applicationId(), type, name, - oidcClientMetadata: buildOidcClientMetadata(type, oidcClientMetadata), + oidcClientMetadata: buildOidcClientMetadata(oidcClientMetadata), ...rest, }); return next(); @@ -74,7 +74,7 @@ export default function applicationRoutes(router: T) { ctx.body = await updateApplicationById(id, { ...body, - oidcClientMetadata: buildOidcClientMetadata(body.type ?? application.type, { + oidcClientMetadata: buildOidcClientMetadata({ ...application.oidcClientMetadata, ...body.oidcClientMetadata, }), diff --git a/packages/schemas/src/db-entries/application.ts b/packages/schemas/src/db-entries/application.ts index 7454f9897..81021267b 100644 --- a/packages/schemas/src/db-entries/application.ts +++ b/packages/schemas/src/db-entries/application.ts @@ -13,24 +13,33 @@ import { ApplicationType } from './custom-types'; export type ApplicationDBEntry = { id: string; name: string; + description?: string | null; type: ApplicationType; oidcClientMetadata: OidcClientMetadata; + idTokenTtl?: number; + refreshTokenTtl?: number; createdAt?: number; }; export type Application = { id: string; name: string; + description: string | null; type: ApplicationType; oidcClientMetadata: OidcClientMetadata; + idTokenTtl: number; + refreshTokenTtl: number; createdAt: number; }; const guard: Guard = z.object({ id: z.string(), name: z.string(), + description: z.string().optional(), type: z.nativeEnum(ApplicationType), oidcClientMetadata: oidcClientMetadataGuard, + idTokenTtl: z.number().optional(), + refreshTokenTtl: z.number().optional(), createdAt: z.number().optional(), }); @@ -40,10 +49,22 @@ export const Applications: GeneratedSchema = Object.freeze({ fields: { id: 'id', name: 'name', + description: 'description', type: 'type', oidcClientMetadata: 'oidc_client_metadata', + idTokenTtl: 'id_token_ttl', + refreshTokenTtl: 'refresh_token_ttl', createdAt: 'created_at', }, - fieldKeys: ['id', 'name', 'type', 'oidcClientMetadata', 'createdAt'], + fieldKeys: [ + 'id', + 'name', + 'description', + 'type', + 'oidcClientMetadata', + 'idTokenTtl', + 'refreshTokenTtl', + 'createdAt', + ], guard, }); diff --git a/packages/schemas/src/foundations/jsonb-types.ts b/packages/schemas/src/foundations/jsonb-types.ts index a13415b11..893443833 100644 --- a/packages/schemas/src/foundations/jsonb-types.ts +++ b/packages/schemas/src/foundations/jsonb-types.ts @@ -15,9 +15,9 @@ export const oidcModelInstancePayloadGuard = z export type OidcModelInstancePayload = z.infer; export const oidcClientMetadataGuard = z.object({ - applicationType: z.enum(['web', 'native']), redirectUris: z.string().array(), postLogoutRedirectUris: z.string().array(), + logoUri: z.string().optional(), }); export type OidcClientMetadata = z.infer; diff --git a/packages/schemas/tables/applications.sql b/packages/schemas/tables/applications.sql index 2cc73cba8..f44ac2626 100644 --- a/packages/schemas/tables/applications.sql +++ b/packages/schemas/tables/applications.sql @@ -3,8 +3,11 @@ create type application_type as enum ('Native', 'SPA', 'Traditional'); create table applications ( id varchar(128) not null, name varchar(256) not null, + description text, type application_type not null, oidc_client_metadata jsonb /* @use OidcClientMetadata */ not null, + id_token_ttl bigint not null default(86400), + refresh_token_ttl bigint not null default(2592000), created_at timestamptz not null default(now()), primary key (id) );