Support for Response Mode "code id_token"

dmfs / oauth2-essentials

An OAuth2 client implementation based on http-client-essentials.

Apache License 2.0

86 stars 21 forks source link

Support for Response Mode "code id_token" #97

Open schnobbl opened 1 year ago

schnobbl commented 1 year ago

Hi,

is there a way to use the AuthorizationCodeGrant with response mode "code id_token"? A big german accounting provider (DATEV) requires this mode as mandatory.

Thx Norbert

dmfs commented 1 year ago

Hi Norbert, that's an OpenID Connect response mode. If you don't need the id_token itself, at present, your best option would be to copy and paste the AuthorizationCodeGrant class and adjust the response mode. If you also need the id_token things are a bit more complicated.

Adding proper support for OpenID Connect is on my todo list. Unfortunately it requires a few non-trivial changes that I didn't find the time to implement yet.