Closed bufferoverflow closed 2 years ago
I'm declining to merge this because it violates encapsulation. Not all options are valid parameters to send in an authorization request. This module parses options for valid params as defined by the OpenID Connect specification. Any other parameters are extensions that are (typically) specific to individual OpenID providers. Given that, encapsulating provider specific extensions in provider specific modules makes development and maintenance easier.
This enables people to use passport-openidconnect directly when specific parameters are required instead of creating another passport strategy. A additional parameter can be passed within the authenticate method, e.g.
passport.authenticate('openidconnect', {connection: 'my-oidc'})...