include client_secret in request to device auth url

DrDaveD · DrDaveD · commit 92b2d28bdf4d · 2021-07-19T13:41:19.000-05:00
diff --git a/path_oidc.go b/path_oidc.go
@@ -609,6 +609,7 @@ func (b *jwtAuthBackend) authURL(ctx context.Context, req *logical.Request, d *f
 
 		values := url.Values {
 			"client_id": {config.OIDCClientID},
+			"client_secret": {config.OIDCClientSecret},
 			"scope":     {strings.Join(scopes, " ")},
 		}
 		body, err := contactIssuer(caCtx, config.OIDCDeviceAuthURL, &values, false)
@@ -625,7 +626,7 @@ func (b *jwtAuthBackend) authURL(ctx context.Context, req *logical.Request, d *f
 		}
 		err = json.Unmarshal(body, &deviceCode)
 		if err != nil {
-			return nil, errwrap.Wrapf("error decoding issuer response to device auth: {{err}}", err)
+			return nil, fmt.Errorf("error decoding issuer response to device auth: %v; response: %v", err, string(body))
 		}
 		// currently hashicorp/cap/oidc.NewRequest requires
 		//  redirectURL to be non-empty so throw in place holder

Original file line number	Diff line number	Diff line change
`@@ -609,6 +609,7 @@ func (b jwtAuthBackend) authURL(ctx context.Context, req logical.Request, d *f`
`609`	`609`
`610`	`610`	`values := url.Values {`
`611`	`611`	`"client_id": {config.OIDCClientID},`
	`612`	`+ "client_secret": {config.OIDCClientSecret},`
`612`	`613`	`"scope": {strings.Join(scopes, " ")},`
`613`	`614`	`}`
`614`	`615`	`body, err := contactIssuer(caCtx, config.OIDCDeviceAuthURL, &values, false)`
`@@ -625,7 +626,7 @@ func (b jwtAuthBackend) authURL(ctx context.Context, req logical.Request, d *f`
`625`	`626`	`}`
`626`	`627`	`err = json.Unmarshal(body, &deviceCode)`
`627`	`628`	`if err != nil {`
`628`		`- return nil, errwrap.Wrapf("error decoding issuer response to device auth: {{err}}", err)`
	`629`	`+ return nil, fmt.Errorf("error decoding issuer response to device auth: %v; response: %v", err, string(body))`
`629`	`630`	`}`
`630`	`631`	`// currently hashicorp/cap/oidc.NewRequest requires`
`631`	`632`	`// redirectURL to be non-empty so throw in place holder`