From 283a87855ab153364bfc00d2e3f1f1bee9a3d2fb Mon Sep 17 00:00:00 2001
From: "m.nabokikh" <maksim.nabokikh@flant.com>
Date: Wed, 20 Jan 2021 15:15:30 +0400
Subject: [PATCH] fix: update auth methods and claims in discovery endpoint

Signed-off-by: m.nabokikh <maksim.nabokikh@flant.com>
---
 server/handlers.go | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/server/handlers.go b/server/handlers.go
index ec056a76..c0c02f94 100644
--- a/server/handlers.go
+++ b/server/handlers.go
@@ -184,10 +184,10 @@ func (s *Server) discoveryHandler() (http.HandlerFunc, error) {
 		IDTokenAlgs:       []string{string(jose.RS256)},
 		CodeChallengeAlgs: []string{CodeChallengeMethodS256, CodeChallengeMethodPlain},
 		Scopes:            []string{"openid", "email", "groups", "profile", "offline_access"},
-		AuthMethods:       []string{"client_secret_basic"},
+		AuthMethods:       []string{"client_secret_basic", "client_secret_post"},
 		Claims: []string{
-			"aud", "email", "email_verified", "exp",
-			"iat", "iss", "locale", "name", "sub",
+			"iss", "sub", "aud", "iat", "exp", "email", "email_verified",
+			"locale", "name", "preferred_username", "at_hash",
 		},
 	}
 
-- 
GitLab