OIDC interaction details에 client 추가 (#246)

* argon2 dependencies에 node-gyp 추가 * OIDC interaction details에 client 추가 * details 엔드포인트에서 노출되는 클라이언트 정보를 제한
bacchus-snu · Sep 28, 2023 · 52144ed · 52144ed
1 parent 3a8fb42
commit 52144ed
Show file tree

Hide file tree

Showing 3 changed files with 21 additions and 3 deletions.
diff --git a/.yarnrc.yml b/.yarnrc.yml
@@ -1,3 +1,8 @@
+packageExtensions:
+  "argon2@^0.31.1":
+    dependencies:
+      node-gyp: "^9.4.0"
+
 plugins:
   - path: .yarn/plugins/@yarnpkg/plugin-workspace-tools.cjs
     spec: "@yarnpkg/plugin-workspace-tools"

diff --git a/src/oidc/routes.ts b/src/oidc/routes.ts
@@ -44,10 +44,23 @@ export default (model: Model, provider: OIDCProvider) => {
   router.get('/oauth/:uid/details', async ctx => {
     const {
       prompt,
-      params,
+      params: paramsRaw,
     } = await provider.interactionDetails(ctx.req, ctx.res);
+    const params = paramsSchema.parse(paramsRaw);
+    const client = await provider.Client.find(params.client_id);
     ctx.status = 200;
-    ctx.body = { prompt, params };
+    ctx.body = {
+      prompt,
+      params: paramsRaw,
+      client: client && {
+        name: client.clientName,
+        uri: client.clientUri,
+        policyUri: client.policyUri,
+        tosUri: client.tosUri,
+        logoUri: client.logoUri,
+        contacts: client.contacts,
+      },
+    };
   });
 
   router.post('/oauth/:uid/action/login', async ctx => {

diff --git a/yarn.lock b/yarn.lock
@@ -3987,7 +3987,7 @@ __metadata:
   languageName: node
   linkType: hard
 
-"node-gyp@npm:latest":
+"node-gyp@npm:^9.4.0, node-gyp@npm:latest":
   version: 9.4.0
   resolution: "node-gyp@npm:9.4.0"
   dependencies: