oidc-provider/lib/actions/authorization/load_pushed_authorization_request.js

OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect

import { PUSHED_REQUEST_URN } from '../../consts/index.js';
import { InvalidRequestUri } from '../../helpers/errors.js';

export default async function loadPushedAuthorizationRequest(ctx) {
  const { params } = ctx.oidc;
  const [, id] = params.request_uri.split(PUSHED_REQUEST_URN);
  const requestObject = await ctx.oidc.provider.PushedAuthorizationRequest.find(id, {
    ignoreExpiration: true,
  });

  if (!requestObject || !requestObject.isValid) {
    throw new InvalidRequestUri('request_uri is invalid, expired, or was already used');
  }

  ctx.oidc.entity('PushedAuthorizationRequest', requestObject);

  return requestObject;
}