From: Sergey Kitov Date: Thu, 14 Mar 2019 13:53:41 +0000 (+0200) Subject: lib-oauth2: Add client_id and client_secret to introspect request X-Git-Tag: 2.3.9~637 X-Git-Url: http://git.ipfire.org/cgi-bin/gitweb.cgi?a=commitdiff_plain;h=66f4367e2fb6a93e2eb69d2f4e9534a762b0a425;p=thirdparty%2Fdovecot%2Fcore.git lib-oauth2: Add client_id and client_secret to introspect request --- diff --git a/src/lib-oauth2/oauth2-introspect.c b/src/lib-oauth2/oauth2-introspect.c index 023bb5af4e..3400ed6716 100644 --- a/src/lib-oauth2/oauth2-introspect.c +++ b/src/lib-oauth2/oauth2-introspect.c @@ -81,6 +81,10 @@ oauth2_introspection_start(const struct oauth2_settings *set, if (set->introspection_mode == INTROSPECTION_MODE_GET) { http_url_escape_param(enc, input->token); + str_append(enc, "&client_id="); + http_url_escape_param(enc, set->client_id); + str_append(enc, "&client_secret="); + http_url_escape_param(enc, set->client_secret); } if (set->introspection_mode == INTROSPECTION_MODE_POST) { @@ -91,6 +95,10 @@ oauth2_introspection_start(const struct oauth2_settings *set, enc = t_str_new(strlen(input->token)+6); str_append(enc, "token="); http_url_escape_param(enc, input->token); + str_append(enc, "&client_id="); + http_url_escape_param(enc, set->client_id); + str_append(enc, "&client_secret="); + http_url_escape_param(enc, set->client_secret); http_client_request_add_header(req->req, "Content-Type", "application/x-www-form-urlencoded"); http_client_request_set_payload_data(req->req, enc->data, enc->used);