mirror of
https://codeberg.org/davrot/forgejo.git
synced 2025-07-23 19:00:02 +02:00

- Trim the ending slash '/' from the URL used in the OpenID Connect "well_known" endpoint and in the JWT tokens issued by Forgejo. - This makes it compliant with the OpenID specification. https://openid.net/specs/openid-connect-discovery-1_0.html#ProviderConfig - Resolves #7941 Reviewed-on: https://codeberg.org/forgejo/forgejo/pulls/8028 Reviewed-by: Lucas <sclu1034@noreply.codeberg.org> Reviewed-by: Gusted <gusted@noreply.codeberg.org> Co-authored-by: jmaasing <jmaasing@noreply.codeberg.org> Co-committed-by: jmaasing <jmaasing@noreply.codeberg.org>
49 lines
1.2 KiB
Go HTML Template
49 lines
1.2 KiB
Go HTML Template
{
|
|
"issuer": "{{.Issuer | JSEscape}}",
|
|
"authorization_endpoint": "{{AppUrl | JSEscape}}login/oauth/authorize",
|
|
"token_endpoint": "{{AppUrl | JSEscape}}login/oauth/access_token",
|
|
"jwks_uri": "{{AppUrl | JSEscape}}login/oauth/keys",
|
|
"userinfo_endpoint": "{{AppUrl | JSEscape}}login/oauth/userinfo",
|
|
"introspection_endpoint": "{{AppUrl | JSEscape}}login/oauth/introspect",
|
|
"response_types_supported": [
|
|
"code",
|
|
"id_token"
|
|
],
|
|
"id_token_signing_alg_values_supported": [
|
|
"{{.SigningKey.SigningMethod.Alg | JSEscape}}"
|
|
],
|
|
"subject_types_supported": [
|
|
"public"
|
|
],
|
|
"scopes_supported": [
|
|
"openid",
|
|
"profile",
|
|
"email",
|
|
"groups"
|
|
],
|
|
"claims_supported": [
|
|
"aud",
|
|
"exp",
|
|
"iat",
|
|
"iss",
|
|
"sub",
|
|
"name",
|
|
"preferred_username",
|
|
"profile",
|
|
"picture",
|
|
"website",
|
|
"locale",
|
|
"updated_at",
|
|
"email",
|
|
"email_verified",
|
|
"groups"
|
|
],
|
|
"code_challenge_methods_supported": [
|
|
"plain",
|
|
"S256"
|
|
],
|
|
"grant_types_supported": [
|
|
"authorization_code",
|
|
"refresh_token"
|
|
]
|
|
}
|