feat: support OIDC id_token

- generate JWT id_token in token exchange - store optional nonce in authorization object - switch to RS256 algorithm for JWT signature - add JWKs endpoint to provide OIDC clients with public keys
2024-12-12 01:12:40 +01:00 · 2024-12-12 01:12:40 +01:00 · d982f2af0d
commit d982f2af0d
parent ca84a0f99f
29 changed files with 255 additions and 82 deletions
--- a/tests/hurl_integration/oidc_core/config.toml
+++ b/tests/hurl_integration/oidc_core/config.toml
@ -1,3 +1,5 @@
+signing_key = "tmp/secrets/signing.key"
+
 [instance]
 base_uri = "http://localhost:8086"
 name = "Example org"
--- a/tests/hurl_integration/oidc_core/main.hurl
+++ b/tests/hurl_integration/oidc_core/main.hurl
@ -1,6 +1,6 @@
 POST {{ base_url }}/login
 [FormParams]
-login: root
+login: john.doe
 password: root
 HTTP 303
 [Captures]