strapi-plugin-oidc 1.9.4 → 1.9.6

package/dist/server/index.js

@@ -59,7 +59,8 @@ const errorMessages = {
   WHITELIST_NOT_PRESENT: "Not present in whitelist",
   PROVIDER_RESPONSE_INVALID: "Unexpected response from OIDC provider",
   SESSION_MANAGER_UNSUPPORTED: "sessionManager is not supported. Please upgrade to Strapi v5.24.1 or later.",
-  JWKS_URI_NOT_CONFIGURED: "[OIDC] OIDC_JWKS_URI is not configured — ID token signature verification is disabled. Set OIDC_JWKS_URI and OIDC_ISSUER from your provider's discovery document.",
+  OIDC_ISSUER_NOT_CONFIGURED: "[strapi-plugin-oidc] OIDC_ISSUER is not configured — discovery skipped. OIDC sign-in will fail until OIDC_ISSUER is set in your plugin config.",
+  JWKS_URI_NOT_CONFIGURED: "[strapi-plugin-oidc] OIDC_JWKS_URI is not configured — ID token signature verification is disabled. Set OIDC_JWKS_URI and OIDC_ISSUER from your provider's discovery document.",
   ENFORCE_MIDDLEWARE_ERROR: "Error checking OIDC enforcement in middleware:",
   ENFORCE_SYNC_ERROR: "[strapi-plugin-oidc] Failed to sync OIDC_ENFORCE to database:",
   DEFAULT_ROLE_INIT_ERROR: "Could not initialize default OIDC role:",
@@ -207,7 +208,10 @@ const FIELD_MAP = [
 async function applyDiscovery(strapi2) {
   const config2 = strapi2.config.get("plugin::strapi-plugin-oidc");
   const issuer = config2.OIDC_ISSUER;
-  if (!issuer) return;
+  if (!issuer) {
+    strapi2.log.warn(errorMessages.OIDC_ISSUER_NOT_CONFIGURED);
+    return;
+  }
   let discoveryUrl;
   let canonicalIssuer;
   if (issuer.includes(OIDC_DISCOVERY_PATH)) {
@@ -230,7 +234,7 @@ async function applyDiscovery(strapi2) {
     );
     return;
   }
-  const updates = { OIDC_ISSUER: canonicalIssuer };
+  const updates = { OIDC_ISSUER: doc.issuer ?? canonicalIssuer };
   for (const [docField, configKey] of FIELD_MAP) {
     if (doc[docField]) {
       updates[configKey] = doc[docField];

package/dist/server/index.mjs

@@ -53,7 +53,8 @@ const errorMessages = {
   WHITELIST_NOT_PRESENT: "Not present in whitelist",
   PROVIDER_RESPONSE_INVALID: "Unexpected response from OIDC provider",
   SESSION_MANAGER_UNSUPPORTED: "sessionManager is not supported. Please upgrade to Strapi v5.24.1 or later.",
-  JWKS_URI_NOT_CONFIGURED: "[OIDC] OIDC_JWKS_URI is not configured — ID token signature verification is disabled. Set OIDC_JWKS_URI and OIDC_ISSUER from your provider's discovery document.",
+  OIDC_ISSUER_NOT_CONFIGURED: "[strapi-plugin-oidc] OIDC_ISSUER is not configured — discovery skipped. OIDC sign-in will fail until OIDC_ISSUER is set in your plugin config.",
+  JWKS_URI_NOT_CONFIGURED: "[strapi-plugin-oidc] OIDC_JWKS_URI is not configured — ID token signature verification is disabled. Set OIDC_JWKS_URI and OIDC_ISSUER from your provider's discovery document.",
   ENFORCE_MIDDLEWARE_ERROR: "Error checking OIDC enforcement in middleware:",
   ENFORCE_SYNC_ERROR: "[strapi-plugin-oidc] Failed to sync OIDC_ENFORCE to database:",
   DEFAULT_ROLE_INIT_ERROR: "Could not initialize default OIDC role:",
@@ -201,7 +202,10 @@ const FIELD_MAP = [
 async function applyDiscovery(strapi2) {
   const config2 = strapi2.config.get("plugin::strapi-plugin-oidc");
   const issuer = config2.OIDC_ISSUER;
-  if (!issuer) return;
+  if (!issuer) {
+    strapi2.log.warn(errorMessages.OIDC_ISSUER_NOT_CONFIGURED);
+    return;
+  }
   let discoveryUrl;
   let canonicalIssuer;
   if (issuer.includes(OIDC_DISCOVERY_PATH)) {
@@ -224,7 +228,7 @@ async function applyDiscovery(strapi2) {
     );
     return;
   }
-  const updates = { OIDC_ISSUER: canonicalIssuer };
+  const updates = { OIDC_ISSUER: doc.issuer ?? canonicalIssuer };
   for (const [docField, configKey] of FIELD_MAP) {
     if (doc[docField]) {
       updates[configKey] = doc[docField];

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "strapi-plugin-oidc",
-  "version": "1.9.4",
+  "version": "1.9.6",
   "description": "A Strapi plugin that provides OpenID Connect (OIDC) authentication functionality for the Strapi Admin Panel.",
   "strapi": {
     "displayName": "OIDC Plugin",