oidc-provider
Version:
OAuth 2.0 Authorization Server implementation for Node.js with OpenID Connect
16 lines (13 loc) • 459 B
JavaScript
import { NON_REJECTABLE_CLAIMS } from '../consts/non_rejectable_claims.js';
export default (source, target, grant) => {
const claims = { ...(source?.[target]) };
const requested = Object.keys(claims);
const granted = new Set(grant.getOIDCClaimsFiltered(new Set(requested)));
for (const claim of requested) {
if (NON_REJECTABLE_CLAIMS.has(claim)) continue;
if (!granted.has(claim)) {
delete claims[claim];
}
}
return claims;
};