sato11
commented
2 years ago I have a draft patch and it'll soon be ready, but for the formality created an issue as well.
Closed sato11 closed 2 years ago
sato11
commented
2 years ago I have a draft patch and it'll soon be ready, but for the formality created an issue as well.
Dookeeper allows to disable token introspection by setting
allow_token_introspectiontofalse. With this configured, the route is not drawn and naturallyoauth_introspect_urlhelper is not available.https://github.com/doorkeeper-gem/doorkeeper/blob/v5.6.0.rc1/lib/doorkeeper/rails/routes.rb#L39
However, on the doorkeeper-openid_connect side, the above behavior is overlooked and
oauth_introspect_urlis always depended on, which causes NoMethodError whenever we configure as such and make request to/.well-known/openid-configuration.This is reproducible if you just write
allow_token_introspection falseinspec/dummy/config/initializers/doorkeeper.rband run tests.