Merge branch 'main' into feat/access_type

erlef · Apr 15, 2024 · 38b8a5e · 38b8a5e
2 parents e1007ff + 94c6b71
commit 38b8a5e
Show file tree

Hide file tree

Showing 3 changed files with 56 additions and 4 deletions.
diff --git a/README.md b/README.md
@@ -46,7 +46,7 @@ OpenID Certified by [Jonatan Männchen](https://github.com/maennchen) at the
 [Erlang Ecosystem Foundation](https://github.com/erlef) of multiple Relaying
 Party conformance profiles of the OpenID Connect protocol:
 For details, check the
-[Conformance Documentation](https://github.com/erlef/oidcc/tree/openid-foundation-certification).
+[Conformance Test Suite](https://github.com/erlef/oidcc_conformance).
 
 <br clear="left"/>
 
@@ -92,6 +92,8 @@ end
 
 ## Usage
 
+### Setup
+
 ```elixir
 defmodule SampleApp.Application do
   # ...
@@ -118,7 +120,58 @@ defmodule SampleApp.Application do
 
   # ...
 end
+```
+
+### Authorization Flow
+
+```elixir
+defmodule SampleAppWeb.OidccController do
+  use SampleAppWeb, :controller
+
+  plug Oidcc.Plug.Authorize,
+    [
+      provider: TestWorks.OpenIdConfigurationProvider,
+      client_id: "client_id",
+      client_secret: "client_secret",
+      redirect_uri: &__MODULE__.callback_uri/0
+    ]
+    when action in [:authorize]
+
+  plug Oidcc.Plug.AuthorizationCallback,
+    [
+      provider: TestWorks.OpenIdConfigurationProvider,
+      client_id: "client_id",
+      client_secret: "client_secret",
+      redirect_uri: &__MODULE__.callback_uri/0
+    ]
+    when action in [:callback]
+
+  @doc false
+  def callback_uri, do: url(~p"/oidcc/callback")
+
+  def authorize(conn, _params), do: conn
+
+  def callback(%Plug.Conn{private: %{
+    Oidcc.Plug.AuthorizationCallback => {:ok, {_token, userinfo}}}
+  } = conn, params) do
+    conn
+    |> put_session("oidcc_claims", userinfo)
+    |> redirect(to: "/")
+  end
+
+  def callback(%Plug.Conn{private: %{
+    Oidcc.Plug.AuthorizationCallback => {:error, reason}
+  }} = conn, _params) do
+    conn
+    |> put_status(400)
+    |> render(:error, reason: reason)
+  end
+end
+```
+
+### API (Check access token header)
 
+```elixir
 defmodule SampleAppWeb.Endpoint do
   use Phoenix.Endpoint, otp_app: :sample_app
 
@@ -150,4 +203,3 @@ defmodule SampleAppWeb.Endpoint do
   plug SampleAppWeb.Router
 end
 ```
-
diff --git a/assets/logo.svg b/assets/logo.svg
diff --git a/lib/oidcc/plug/authorization_callback.ex b/lib/oidcc/plug/authorization_callback.ex
@@ -166,7 +166,7 @@ defmodule Oidcc.Plug.AuthorizationCallback do
            scopes = :oidcc_scope.parse(scope),
            token_opts =
              opts
-             |> Keyword.take([:request_opts,:preferred_auth_methods])
+             |> Keyword.take([:request_opts, :preferred_auth_methods])
              |> Map.new()
              |> Map.merge(%{
                nonce: nonce,