npm - openid-client - Versions diffs - 5.1.10 → 5.2.0 - Mend

openid-client 5.1.10 → 5.2.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (3) hide show

package/README.md CHANGED Viewed

@@ -42,7 +42,7 @@ openid-client.
     - self_signed_tls_client_auth
 - [RFC9101 - OAuth 2.0 JWT-Secured Authorization Request (JAR)][feature-jar]
 - [RFC9126 - OAuth 2.0 Pushed Authorization Requests (PAR)][feature-par]
-- [OpenID Connect RP-Initiated Logout 1.0 - draft 01][feature-rp-logout]
+- [OpenID Connect RP-Initiated Logout 1.0][feature-rp-logout]
 - [Financial-grade API Security Profile 1.0 - Part 2: Advanced (FAPI)][feature-fapi]
 - [JWT Secured Authorization Response Mode for OAuth 2.0 (JARM) - ID1][feature-jarm]
 - [OAuth 2.0 Demonstration of Proof-of-Possession at the Application Layer (DPoP) - draft 04][feature-dpop]
@@ -272,7 +272,7 @@ See [Customizing (docs)][documentation-customizing].
 [feature-introspection]: https://tools.ietf.org/html/rfc7662
 [feature-mtls]: https://tools.ietf.org/html/rfc8705
 [feature-device-flow]: https://tools.ietf.org/html/rfc8628
-[feature-rp-logout]: https://openid.net/specs/openid-connect-rpinitiated-1_0-01.html
+[feature-rp-logout]: https://openid.net/specs/openid-connect-rpinitiated-1_0.html
 [feature-jarm]: https://openid.net/specs/openid-financial-api-jarm-ID1.html
 [feature-fapi]: https://openid.net/specs/openid-financial-api-part-2-1_0.html
 [feature-dpop]: https://tools.ietf.org/html/draft-ietf-oauth-dpop-04

package/lib/client.js CHANGED Viewed

@@ -288,24 +288,26 @@ class BaseClient {
     const { post_logout_redirect_uri = length === 1 ? postLogout : undefined } = params;
-    let hint = params.id_token_hint;
-    if (hint instanceof TokenSet) {
-      if (!hint.id_token) {
+    let id_token_hint;
+    ({ id_token_hint, ...params } = params);
+    if (id_token_hint instanceof TokenSet) {
+      if (!id_token_hint.id_token) {
         throw new TypeError('id_token not present in TokenSet');
       }
-      hint = hint.id_token;
+      id_token_hint = id_token_hint.id_token;
     }
     const target = url.parse(this.issuer.end_session_endpoint, true);
     target.search = null;
-    target.query = {
-      ...params,
-      ...target.query,
-      ...{
+    defaults(
+      target.query,
+      params,
+      {
         post_logout_redirect_uri,
-        id_token_hint: hint,
+        client_id: this.client_id,
       },
-    };
+      { id_token_hint },
+    );
     Object.entries(target.query).forEach(([key, value]) => {
       if (value === null || value === undefined) {

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "openid-client",
-  "version": "5.1.10",
+  "version": "5.2.0",
   "description": "OpenID Connect Relying Party (RP, Client) implementation for Node.js runtime, supports passportjs",
   "keywords": [
     "auth",
@@ -41,18 +41,11 @@
     "types/index.d.ts"
   ],
   "scripts": {
-    "coverage": "nyc mocha test/**/*.test.js",
-    "prettier": "npx prettier --loglevel silent --write ./lib ./test ./certification ./types",
+    "format": "npx prettier --loglevel silent --write ./lib ./test ./certification ./types",
     "test": "mocha test/**/*.test.js"
   },
-  "nyc": {
-    "reporter": [
-      "lcov",
-      "text-summary"
-    ]
-  },
   "dependencies": {
-    "jose": "^4.1.4",
+    "jose": "^4.10.0",
     "lru-cache": "^6.0.0",
     "object-hash": "^2.0.1",
     "oidc-token-hash": "^5.0.1"
@@ -65,7 +58,6 @@
     "jose2": "npm:jose@^2.0.5",
     "mocha": "^8.2.0",
     "nock": "^13.0.2",
-    "nyc": "^15.1.0",
     "prettier": "^2.4.1",
     "readable-mock-req": "^0.2.2",
     "sinon": "^9.2.0",