def get_id_token_values(self, scope=None, claims=None): """ Get a new id_token using the OIDC authorization flow. """ self.assertIn('openid', scope.split()) response = self.get_access_token_response(scope, claims) self.assertEqual(response.status_code, 200) values = json.loads(response.content) self.assertIn('access_token', values) id_token = values['id_token'] secret = self.auth_client.client_secret self.assertValidIDToken(id_token, secret) scopes = values['scope'].split() claims = self.parse_id_token(id_token) # Should always be included self.assertIn('iss', claims) self.assertIn('sub', claims) return scopes, claims
def get_id_token_values(self, scope=None, claims=None): """ Get a new id_token using the OIDC authorization flow. """ self.assertIn('openid', scope.split()) response = self.get_access_token_response(scope, claims) self.assertEqual(response.status_code, 200) values = json.loads(response.content) self.assertIn('access_token', values) id_token = values['id_token'] secret = self.auth_client.client_secret audience = self.auth_client.client_id self.assertValidIDToken(id_token, secret, audience) scopes = values['scope'].split() claims = self.parse_id_token(id_token) # Should always be included self.assertIn('iss', claims) self.assertIn('sub', claims) return scopes, claims
def set_access_token_scope(self, scope): self.access_token.scope = provider.scope.to_int(*scope.split()) self.access_token.save() # pylint: disable=no-member
def set_access_token_scope(self, scope): self.access_token.scope = provider.scope.to_int(*scope.split()) self.access_token.save()