package/x-oidc
1
0
Fork 0
mirror of https://github.com/xslasd/x-oidc.git synced 2025-10-29 02:22:30 +08:00
Code Issues Packages Projects Releases Wiki Activity
Files
96a41bf0dbe93c5355c85f1a82528d7116abb06c
x-oidc/endsession.go
xsl 73725c2d72 First submission of code
2023-06-02 10:32:29 +08:00

48 lines
1.4 KiB
Go
Raw Blame History

package oidc
import (
"context"
"github.com/xslasd/x-oidc/ecode"
"github.com/xslasd/x-oidc/model"
)
// EndSessionRequest for the RP-Initiated Logout according to:
// https://openid.net/specs/openid-connect-rpinitiated-1_0.html#RPLogout
type EndSessionReq struct {
IdTokenHint string `schema:"id_token_hint"`
ClientID string `schema:"client_id"`
PostLogoutRedirectURI string `schema:"post_logout_redirect_uri"`
State string `schema:"state"`
UILocales string `json:"ui_locales" form:"ui_locales"` //SpaceDelimitedArray
}
func (o *OpenIDProvider) endSession(ctx context.Context, req *EndSessionReq) (string, error) {
if req.IdTokenHint == "" && req.ClientID == "" {
return "", ecode.EndSessionReqInvalid
}
m := model.EndSessionModel{
PostLogoutRedirectURI: req.PostLogoutRedirectURI,
State: req.State,
UILocales: req.UILocales,
}
if req.IdTokenHint != "" {
idTokenClaims, err := o.VerifyIDToken(ctx, req.IdTokenHint)
if err != nil {
return "", err
}
req.ClientID = idTokenClaims.ClientID
m.UserID = idTokenClaims.Subject
}
m.ClientID = req.ClientID
client, err := o.cfg.Storage.GetClientByClientID(ctx, m.ClientID)
if err != nil {
return "", err
}
redirectURI, err := client.EndSessionURL(ctx, m)
if err != nil {
return "", err
}
return redirectURI, nil
}
Reference in New Issue View Git Blame Copy Permalink