fix(openid): add subject_types_supported in well-known OIDC config

2025-06-24 18:47:28 +02:00 · 2025-06-24 18:47:28 +02:00 · 905c57000a
commit 905c57000a
parent 18b33c00a7
1 changed files with 2 additions and 0 deletions
--- a/lib/http_server/src/controllers/api/openid/well_known.rs
+++ b/lib/http_server/src/controllers/api/openid/well_known.rs
@ -17,6 +17,7 @@ struct WellKnownOpenIdConfiguration {
    userinfo_endpoint: String,
    scopes_supported: Vec<String>,
    response_types_supported: Vec<String>,
+    subject_types_supported: Vec<String>,
    token_endpoint_auth_methods_supported: Vec<String>,
    id_token_signing_alg_values_supported: Vec<String>,
    jwks_uri: String
@ -33,6 +34,7 @@ pub async fn get_well_known_openid_configuration(
        userinfo_endpoint: format!("{}/api/user", base_url),
        scopes_supported: AuthorizationScope::iter().map(|v| v.to_string()).collect(),
        response_types_supported: vec!["code".into()],
+        subject_types_supported: vec!["public".into(), "pairwise".into()],
        token_endpoint_auth_methods_supported: vec!["client_secret_basic".into()],
        id_token_signing_alg_values_supported: vec!["RS256".into()],
        jwks_uri: format!("{}/.well-known/jwks", base_url)