backend/internal/controller/well_known_controller.go

package controller

import (
	"net/http"

	"github.com/gin-gonic/gin"
	"github.com/pocket-id/pocket-id/backend/internal/common"
	"github.com/pocket-id/pocket-id/backend/internal/service"
)

func NewWellKnownController(group *gin.RouterGroup, jwtService *service.JwtService) {
	wkc := &WellKnownController{jwtService: jwtService}
	group.GET("/.well-known/jwks.json", wkc.jwksHandler)
	group.GET("/.well-known/openid-configuration", wkc.openIDConfigurationHandler)
}

type WellKnownController struct {
	jwtService *service.JwtService
}

func (wkc *WellKnownController) jwksHandler(c *gin.Context) {
	jwk, err := wkc.jwtService.GetJWK()
	if err != nil {
		c.Error(err)
		return
	}

	c.JSON(http.StatusOK, gin.H{"keys": []interface{}{jwk}})
}

func (wkc *WellKnownController) openIDConfigurationHandler(c *gin.Context) {
	appUrl := common.EnvConfig.AppURL
	config := map[string]interface{}{
		"issuer":                                appUrl,
		"authorization_endpoint":                appUrl + "/authorize",
		"token_endpoint":                        appUrl + "/api/oidc/token",
		"userinfo_endpoint":                     appUrl + "/api/oidc/userinfo",
		"jwks_uri":                              appUrl + "/.well-known/jwks.json",
		"scopes_supported":                      []string{"openid", "profile", "email"},
		"claims_supported":                      []string{"sub", "given_name", "family_name", "name", "email", "email_verified", "preferred_username"},
		"response_types_supported":              []string{"code", "id_token"},
		"subject_types_supported":               []string{"public"},
		"id_token_signing_alg_values_supported": []string{"RS256"},
	}
	c.JSON(http.StatusOK, config)
}
refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`package controller`
initial commit 2024-08-12 11:00:25 +02:00
			`import (`
			`"net/http"`
chore: replace `stonith404` with `pocket-id` after org migration 2025-02-05 18:08:01 +01:00
			`"github.com/gin-gonic/gin"`
			`"github.com/pocket-id/pocket-id/backend/internal/common"`
			`"github.com/pocket-id/pocket-id/backend/internal/service"`
initial commit 2024-08-12 11:00:25 +02:00			`)`

refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`func NewWellKnownController(group gin.RouterGroup, jwtService service.JwtService) {`
			`wkc := &WellKnownController{jwtService: jwtService}`
			`group.GET("/.well-known/jwks.json", wkc.jwksHandler)`
			`group.GET("/.well-known/openid-configuration", wkc.openIDConfigurationHandler)`
initial commit 2024-08-12 11:00:25 +02:00			`}`

refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`type WellKnownController struct {`
			`jwtService *service.JwtService`
			`}`

			`func (wkc WellKnownController) jwksHandler(c gin.Context) {`
			`jwk, err := wkc.jwtService.GetJWK()`
initial commit 2024-08-12 11:00:25 +02:00			`if err != nil {`
feat: custom claims (#53) 2024-10-28 18:11:54 +01:00			`c.Error(err)`
initial commit 2024-08-12 11:00:25 +02:00			`return`
			`}`

			`c.JSON(http.StatusOK, gin.H{"keys": []interface{}{jwk}})`
			`}`

refactor: use dependency injection in backend 2024-08-17 21:57:14 +02:00			`func (wkc WellKnownController) openIDConfigurationHandler(c gin.Context) {`
initial commit 2024-08-12 11:00:25 +02:00			`appUrl := common.EnvConfig.AppURL`
			`config := map[string]interface{}{`
			`"issuer": appUrl,`
			`"authorization_endpoint": appUrl + "/authorize",`
			`"token_endpoint": appUrl + "/api/oidc/token",`
feat: add user info endpoint to support more oidc clients 2024-08-19 18:48:18 +02:00			`"userinfo_endpoint": appUrl + "/api/oidc/userinfo",`
initial commit 2024-08-12 11:00:25 +02:00			`"jwks_uri": appUrl + "/.well-known/jwks.json",`
			`"scopes_supported": []string{"openid", "profile", "email"},`
feat: add `email_verified` claim 2024-10-25 21:33:54 +02:00			`"claims_supported": []string{"sub", "given_name", "family_name", "name", "email", "email_verified", "preferred_username"},`
initial commit 2024-08-12 11:00:25 +02:00			`"response_types_supported": []string{"code", "id_token"},`
			`"subject_types_supported": []string{"public"},`
			`"id_token_signing_alg_values_supported": []string{"RS256"},`
			`}`
			`c.JSON(http.StatusOK, config)`
			`}`