39 lines
1.2 KiB
Go
39 lines
1.2 KiB
Go
|
package handlers
|
||
|
|
||
|
import (
|
||
|
"net/http"
|
||
|
|
||
|
"github.com/ory/fosite"
|
||
|
|
||
|
"github.com/authelia/authelia/v4/internal/middlewares"
|
||
|
"github.com/authelia/authelia/v4/internal/oidc"
|
||
|
)
|
||
|
|
||
|
// OAuthIntrospectionPOST handles POST requests to the OAuth 2.0 Introspection endpoint.
|
||
|
//
|
||
|
// https://datatracker.ietf.org/doc/html/rfc7662
|
||
|
func OAuthIntrospectionPOST(ctx *middlewares.AutheliaCtx, rw http.ResponseWriter, req *http.Request) {
|
||
|
var (
|
||
|
responder fosite.IntrospectionResponder
|
||
|
err error
|
||
|
)
|
||
|
|
||
|
oidcSession := oidc.NewSession()
|
||
|
|
||
|
if responder, err = ctx.Providers.OpenIDConnect.Fosite.NewIntrospectionRequest(ctx, req, oidcSession); err != nil {
|
||
|
rfc := fosite.ErrorToRFC6749Error(err)
|
||
|
|
||
|
ctx.Logger.Errorf("Introspection Request failed with error: %+v", rfc)
|
||
|
|
||
|
ctx.Providers.OpenIDConnect.Fosite.WriteIntrospectionError(rw, err)
|
||
|
|
||
|
return
|
||
|
}
|
||
|
|
||
|
requester := responder.GetAccessRequester()
|
||
|
|
||
|
ctx.Logger.Tracef("Introspection Request yeilded a %s (active: %t) requested at %s created with request id '%s' on client with id '%s'", responder.GetTokenUse(), responder.IsActive(), requester.GetRequestedAt().String(), requester.GetID(), requester.GetClient().GetID())
|
||
|
|
||
|
ctx.Providers.OpenIDConnect.Fosite.WriteIntrospectionResponse(rw, responder)
|
||
|
}
|