lumin/comfycamp
lumin/comfycamp
1
0
Fork 0
Code Issues 4 Pull requests Projects Releases Packages Wiki Activity

fix: sign id token using client secret

Browse source
This commit is contained in:
Ivan R. 2024-09-21 15:43:35 +05:00
parent 51d627efa4
commit 13461897b4
Signed by: lumin
GPG key ID: E0937DC7CD6D3817
2 changed files with 5 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

4
lib/comfycamp/token.ex
View file

@ -3,6 +3,10 @@ defmodule Comfycamp.Token do
def sign(claims) do def sign(claims) do
secret = Application.fetch_env!(:comfycamp, :jwt_secret) secret = Application.fetch_env!(:comfycamp, :jwt_secret)
sign(claims, secret)
end
def sign(claims, secret) do
signer = Joken.Signer.create("HS256", secret) signer = Joken.Signer.create("HS256", secret)
Joken.Signer.sign(claims, signer) Joken.Signer.sign(claims, signer)
end end

2
lib/comfycamp_web/controllers/oauth_controller.ex
View file

@ -99,7 +99,7 @@ defmodule ComfycampWeb.OauthController do
{access_token, refresh_token} = Accounts.generate_oauth_tokens(code.user) {access_token, refresh_token} = Accounts.generate_oauth_tokens(code.user)
id_token = IDToken.build_id_token(code.user, oidc_app.client_id) id_token = IDToken.build_id_token(code.user, oidc_app.client_id)
{:ok, signed_id_token} = Token.sign(id_token) {:ok, signed_id_token} = Token.sign(id_token, client_secret)
render(conn, :token, render(conn, :token,
access_token: Base.url_encode64(access_token), access_token: Base.url_encode64(access_token),