Support token_endpoint_auth_signing_alg_values_supported #203
Conversation
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
There was a problem hiding this comment.
Pull Request Overview
Adds support for the token_endpoint_auth_signing_alg_values_supported discovery property by introducing a new constant and response property, updating test fixtures, and extending existing tests.
- Introduce
TokenEndpointAuthenticationSigningAlgorithmsSupportedinOidcConstantsandDiscoveryDocumentResponse. - Add the new signing-algorithms field to the JSON fixture and adjust discovery tests.
- Update the public API verification snapshot to include the new constant.
Reviewed Changes
Copilot reviewed 5 out of 5 changed files in this pull request and generated no comments.
Show a summary per file
| File | Description |
|---|---|
| identity-model/test/IdentityModel.Tests/documents/discovery.json | Add new signing-alg field and several endpoint properties (duplicate key present) |
| identity-model/test/IdentityModel.Tests/Verifications/PublicApiVerificationTests.VerifyPublicApi.verified.txt | Update snapshot for new constant (contains an unintended duplicate) |
| identity-model/test/IdentityModel.Tests/HttpClientExtensions/DiscoveryExtensionsTests.cs | Add assertions for the new signing algorithms and other endpoints |
| identity-model/src/IdentityModel/OidcConstants.cs | Define the new constant for signing algorithms |
| identity-model/src/IdentityModel/Client/Messages/DiscoveryDocumentResponse.cs | Expose the new signing-algorithms property |
Comments suppressed due to low confidence (2)
identity-model/test/IdentityModel.Tests/Verifications/PublicApiVerificationTests.VerifyPublicApi.verified.txt:405
- The short-named constant
TokenEndpointAuthSigningAlgorithmsSupportedduplicates the newly addedTokenEndpointAuthenticationSigningAlgorithmsSupported. Remove the obsolete entry to align the snapshot with the actual public API.
public const string TokenEndpointAuthSigningAlgorithmsSupported = "token_endpoint_auth_signing_alg_values_supported";
identity-model/test/IdentityModel.Tests/documents/discovery.json:15
- Duplicate JSON property 'end_session_endpoint' detected. Remove the redundant entry to prevent parsing conflicts and ensure a valid discovery document.
"end_session_endpoint": "https://demo.identityserver.io/connect/endsession"
josephdecock
force-pushed
the
jmdc/token-auth-algs-disco
branch
2 times, most recently
from
2beb5f9 to
1fcb93f
Compare
There was a problem hiding this comment.
Pull Request Overview
This PR adds support for the new "token_endpoint_auth_signing_alg_values_supported" discovery document property required by the FAPI 2.0 profile. Key changes include the update of the discovery.json file with new endpoints and supported algorithms, the addition of a corresponding public API property, and expanded tests to verify the updated discovery document.
Reviewed Changes
Copilot reviewed 4 out of 4 changed files in this pull request and generated 1 comment.
| File | Description |
|---|---|
| identity-model/test/IdentityModel.Tests/documents/discovery.json | Adjusted discovery document with new endpoints and added signing algorithms property; however, a duplicate key for "end_session_endpoint" was introduced. |
| identity-model/test/IdentityModel.Tests/Verifications/PublicApiVerificationTests.VerifyPublicApi.verified.txt | Added new public API property for token endpoint authentication signing algorithms. |
| identity-model/test/IdentityModel.Tests/HttpClientExtensions/DiscoveryExtensionsTests.cs | Expanded tests to verify all endpoints and supported algorithms including the new signing algorithms. |
| identity-model/src/IdentityModel/Client/Messages/DiscoveryDocumentResponse.cs | Introduced a strongly typed property for token endpoint authentication signing algorithms. |
identity-model/test/IdentityModel.Tests/documents/discovery.json
Outdated
Show resolved
Hide resolved
bhazen
previously approved these changes
May 18, 2025
Co-authored-by: Copilot <175728472+Copilot@users.noreply.github.com>
josephdecock
force-pushed
the
jmdc/token-auth-algs-disco
branch
from
2edf1cd to
0da1629
Compare
bhazen
approved these changes
May 19, 2025
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Add DiscoveryDocumentResponse.TokenEndpointAuthenticationSigningAlgorithmsSupported
This discovery document property is required by the FAPI 2.0 profile. Adding strongly typed support for it makes building conformant implementations easier.