fix(Oauth2): 解决well-known无法访问问题，使用别名替代

2026-05-21 17:17:19 +08:00 · 2026-05-21 17:17:19 +08:00 · 309d634851
commit 309d634851
parent 10dd477365
1 changed files with 26 additions and 0 deletions
--- a/app/Http/Controllers/Api/OauthMetadataController.php
+++ b/app/Http/Controllers/Api/OauthMetadataController.php
@ -42,6 +42,32 @@ class OauthMetadataController extends Controller
        ]);
    }

+    #[Apidoc\Title('OIDC Discovery 2'), Apidoc\Method('GET'), Apidoc\Url('/well-known/openid-configuration')]
+    public function openidConfiguration2(): JsonResponse
+    {
+        $scopes = OauthScope::query()
+            ->where('is_active', true)
+            ->orderBy('name')
+            ->pluck('name')
+            ->values()
+            ->all();
+
+        return response()->json([
+            'issuer' => (string) config('oauth.issuer'),
+            'authorization_endpoint' => URL::to('/oauth/authorize'),
+            'token_endpoint' => URL::to('/oauth/token'),
+            'userinfo_endpoint' => URL::to('/oauth/userinfo'),
+            'jwks_uri' => URL::to('/oauth/jwks'),
+            'response_types_supported' => ['code'],
+            'subject_types_supported' => ['public'],
+            'id_token_signing_alg_values_supported' => ['RS256'],
+            'scopes_supported' => $scopes,
+            'token_endpoint_auth_methods_supported' => ['client_secret_basic', 'client_secret_post'],
+            'grant_types_supported' => ['authorization_code', 'refresh_token'],
+            'claims_supported' => ['iss', 'sub', 'aud', 'exp', 'iat', 'auth_time', 'nonce', 'at_hash', 'nickname', 'email', 'phone'],
+        ]);
+    }
+
    #[Apidoc\Title('JWKS'), Apidoc\Method('GET'), Apidoc\Url('/oauth/jwks')]
    public function jwks(): JsonResponse
    {