@strongnguyen/oidc-provider
Version:
OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect
51 lines (43 loc) • 1.06 kB
JavaScript
const x5t = 'x5t#S256';
const jkt = 'jkt';
const { InvalidRequest } = require('../../helpers/errors');
const { [x5t]: thumbprint } = require('../../helpers/calculate_thumbprint');
module.exports = (superclass) => class extends superclass {
static get IN_PAYLOAD() {
return [
...super.IN_PAYLOAD,
x5t,
jkt,
];
}
setThumbprint(prop, input) {
switch (prop) {
case 'x5t':
if (this[jkt]) {
throw new InvalidRequest('multiple proof-of-posession mechanisms are not allowed');
}
this[x5t] = thumbprint(input);
break;
case 'jkt':
if (this[x5t]) {
throw new InvalidRequest('multiple proof-of-posession mechanisms are not allowed');
}
this[jkt] = input;
break;
default:
throw new Error('unsupported');
}
}
isSenderConstrained() {
if (this[jkt] || this[x5t]) {
return true;
}
return false;
}
get tokenType() {
if (this[jkt]) {
return 'DPoP';
}
return 'Bearer';
}
};