feat(oidc): client authentication modes (#5150)

This adds a feature to OpenID Connect 1.0 where clients can be restricted to a specific client authentication mode, as well as implements some backend requirements for the private_key_jwt client authentication mode (and potentially the tls_client_auth / self_signed_tls_client_auth client authentication modes). It also adds some improvements to configuration defaults and validations which will for now be warnings but likely be made into errors. Signed-off-by: James Elliott <james-d-elliott@users.noreply.github.com>
author: James Elliott <james-d-elliott@users.noreply.github.com> 2023-04-13 20:58:18 +1000
committer: GitHub <noreply@github.com> 2023-04-13 20:58:18 +1000
commit: 3d2da0b070d097129cc71b5e170692c3a6380b8f (patch)
tree: a639324484bd067a7b5eadd04867d6eb40b882c1 /internal/oidc/const_test.go
parent: db130dad483dfdbc36d0f781713d01d6fd1b960c (diff)
1 files changed, 12 insertions, 0 deletions
diff --git a/internal/oidc/const_test.go b/internal/oidc/const_test.go
new file mode 100644
index 000000000..b5e3d915b
--- /dev/null
+++ b/internal/oidc/const_test.go
@@ -0,0 +1,12 @@
+package oidc
+
+const (
+	myclient      = "myclient"
+	myclientdesc  = "My Client"
+	onefactor     = "one_factor"
+	twofactor     = "two_factor"
+	examplecom    = "https://example.com"
+	examplecomsid = "example.com"
+	badsecret     = "$plaintext$a_bad_secret"
+	badhmac       = "asbdhaaskmdlkamdklasmdlkams"
+)
author	James Elliott <james-d-elliott@users.noreply.github.com>	2023-04-13 20:58:18 +1000
committer	GitHub <noreply@github.com>	2023-04-13 20:58:18 +1000
commit	3d2da0b070d097129cc71b5e170692c3a6380b8f (patch)
tree	a639324484bd067a7b5eadd04867d6eb40b882c1 /internal/oidc/const_test.go
parent	db130dad483dfdbc36d0f781713d01d6fd1b960c (diff)