Henry-Hiles/matrixoidc
1
0
Fork 0
Code Issues Pull requests Projects Releases 1 Packages Wiki Activity Actions

Add introspection endpoint

Browse source
This commit is contained in:
Henry Hiles 2025-07-20 16:27:53 -04:00
commit 53867e273b
No known key found for this signature in database
2 changed files with 27 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

1
bin/matrixoidc.dart
View file

@ -36,6 +36,7 @@ void main(List<String> argsRaw) async {
..get("/userinfo", apiHelper.userinfoHandler) ..get("/userinfo", apiHelper.userinfoHandler)
..get("/bridge", apiHelper.bridgeHandler) ..get("/bridge", apiHelper.bridgeHandler)
..post("/login", apiHelper.loginHandler) ..post("/login", apiHelper.loginHandler)
..post('/introspect', apiHelper.introspectionHandler)
..post("/logout", apiHelper.logoutHandler) ..post("/logout", apiHelper.logoutHandler)
..post("/token", apiHelper.tokenHandler)) ..post("/token", apiHelper.tokenHandler))
.call, .call,

26
lib/helpers/api_helper.dart
View file

@ -157,6 +157,31 @@ class ApiHelper {
} }
} }
Future<Response> introspectionHandler(Request request) async {
final token = Uri.splitQueryString(await request.readAsString())['token'];
if (token == null) return Response(400, body: "Missing token");
try {
JWT.verify(
token,
SecretKey(
(await File.fromUri(
Uri.file(ref.read(SettingsController.provider)!.jwtSecretFile),
).readAsString()),
),
);
return Response.ok(
json.encode({'active': true}),
headers: {'content-type': 'application/json'},
);
} catch (_) {
return Response.ok(
json.encode({'active': false}),
headers: {'content-type': 'application/json'},
);
}
}
Future<Response> logoutHandler(Request request) async => Future<Response> logoutHandler(Request request) async =>
Response.ok("Log out is not currently implemented"); Response.ok("Log out is not currently implemented");
@ -168,6 +193,7 @@ class ApiHelper {
"authorization_endpoint": settings.authorizeEndpoint, "authorization_endpoint": settings.authorizeEndpoint,
"token_endpoint": "${settings.issuer}/token", "token_endpoint": "${settings.issuer}/token",
"userinfo_endpoint": "${settings.issuer}/userinfo", "userinfo_endpoint": "${settings.issuer}/userinfo",
"introspection_endpoint": "${settings.issuer}/introspect",
"end_session_endpoint": "${settings.issuer}/logout", "end_session_endpoint": "${settings.issuer}/logout",
"response_types_supported": ["code"], "response_types_supported": ["code"],
"subject_types_supported": ["public"], "subject_types_supported": ["public"],