Skip to content

Commit eab2971

Browse files
ThomasK33ThomasK33
committed
fix: support path parameters in OAuth2 metadata endpoints
Change-Id: Ic28d30af39fcb3c8eea40607e0241c5aa096cc80 Signed-off-by: Thomas Kosiewski <tk@coder.com>
1 parent 5c1a708 commit eab2971

File tree

1 file changed

+6
-2
lines changed

1 file changed

+6
-2
lines changed

coderd/coderd.go

Lines changed: 6 additions & 2 deletions
Original file line numberDiff line numberDiff line change
@@ -948,9 +948,13 @@ func New(options *Options) *API {
948948
}
949949

950950
// OAuth2 metadata endpoint for RFC 8414 discovery
951-
r.Get("/.well-known/oauth-authorization-server", api.oauth2AuthorizationServerMetadata())
951+
r.Route("/.well-known/oauth-authorization-server", func(r chi.Router) {
952+
r.Get("/*", api.oauth2AuthorizationServerMetadata())
953+
})
952954
// OAuth2 protected resource metadata endpoint for RFC 9728 discovery
953-
r.Get("/.well-known/oauth-protected-resource", api.oauth2ProtectedResourceMetadata())
955+
r.Route("/.well-known/oauth-protected-resource", func(r chi.Router) {
956+
r.Get("/*", api.oauth2ProtectedResourceMetadata())
957+
})
954958

955959
// OAuth2 linking routes do not make sense under the /api/v2 path. These are
956960
// for an external application to use Coder as an OAuth2 provider, not for

0 commit comments

Comments
 (0)