Add OIDC capability

2025-10-23 20:04:46 +11:00
parent d480d7dd0a
commit 91573ee2b9
5 changed files with 16 additions and 2 deletions
--- a/app/controllers/oidc_controller.rb
+++ b/app/controllers/oidc_controller.rb
@@ -1,6 +1,6 @@
 class OidcController < ApplicationController
  # Discovery and JWKS endpoints are public
-  allow_unauthenticated_access only: [:discovery, :jwks, :token]
+  allow_unauthenticated_access only: [:discovery, :jwks, :token, :userinfo]
  skip_before_action :verify_authenticity_token, only: [:token]

  # GET /.well-known/openid-configuration
--- a/app/models/oidc_authorization_code.rb
+++ b/app/models/oidc_authorization_code.rb
@@ -15,7 +15,7 @@ class OidcAuthorizationCode < ApplicationRecord
    expires_at <= Time.current
  end

-  def valid?
+  def usable?
    !used? && !expired?
  end