def construct_openid_request(arq, key): """ Construct the specification of what I want returned. The request will be signed """ # Should be configurable !! claims = Claims(name={"essential": True}, nickname=None, email={"essential": True}, email_verified={"essential": True}, picture=None) uic = UserInfoClaim(claims, format="signed", locale="us-en") id_token = IDTokenClaim(max_age=86400, iso29115="2") oir = OpenIDRequest(arq.response_type, client_id=arq.client_id, redirect_uri=arq.redirect_uri, scope=arq.scope, state=arq.state, userinfo=uic, id_token=id_token) return oir.to_jwt(key)
client_id="client1", redirect_uri="http://example.com/authz", scope=["openid"], state="state000", nonce="something") AREQO = AuthorizationRequest(response_type="code", client_id="client1", redirect_uri="http://example.com/authz", scope=["openid", "offlien_access"], prompt="consent", state="state000") OIDR = OpenIDRequest(response_type="code", client_id="client1", redirect_uri="http://example.com/authz", scope=["openid"], state="state000") JWKS = { "keys": [{ "d": "vT9bnSZ63uIdaVsmZjrbmcvrDZG-_qzVQ1KmrSSC398sLJiyaQKRPkmBRvV" "-MGxW1MVPeCkhnSULCRgtqHq" "-zQxMeCviSScHTKOuDYJfwMB5qdOE3FkuqPMsEVf6EXYaSd90" "-O6GOA88LBCPNR4iKxsrQ6LNkawwiJoPw7muK3TbQk9HzuznF8WDkt72CQFxd4eT" "6wJ97xpaIgxZce0oRmFcLYkQ4A0pgVhF42zxJjJDIBj_ZrSl5_qZIgiE76PV4hjH" "t9Nv4ZveabObnNbyz9YOiWHiOLdYZGmixHuauM98NK8udMxI6IuOkRypFhJzaQZF" "wMroa7ZNZF-mm78VYQ", "dp": "wLqivLfMc0FBhGFFRTb6WWzDpVZukcgOEQGb8wW3knmNEpgch699WQ4ZY_ws1xSbv"
from oic.oic import OpenIDRequest from oic.utils.keyio import KeyJar request = 'eyJhbGciOiAiQTEyOEtXIiwgImVuYyI6ICJBMTI4Q0JDLUhTMjU2In0.KLuBoByxG54JdHz5OBjpMjx_6ivPNi6oanRZ5UN38VzcTHw2ftv6FA.Tysc6pZ_AA_X7j95bRSHiQ.YxG8Kf3GVWXnMfzOo7Hva32eHcaNBgpcT3iPIEWq76SgKNCpdnGSKOSiFtJbvCdpXwfneXIAS3uFktQoyo9x698IHp92bAZD9M31G0GfaWh7oZgcHrBkn_QPBFavEQeTSfbvhYya3Wp2U9DrL9CrT6ytTo7mbx6b9drUpSe2waIGJkugOOFCiqr19zXXFDT1Qc04sCGhRwz_0JYMYI9qGULQ0Ws2zQVlcE_iMoA6cFs.gDd8Ns2fJRj18A6gg4-T4g' keyjar = KeyJar() keyjar.add_symmetric( "jJFjKcsaygxp", "f75695a7a87acccdef6c7c978d5e782db1b947e0f6990b050f58940b") OpenIDRequest().from_jwt(request, keyjar=keyjar, sender="jJFjKcsaygxp")