fix: use AuthURLParam to set client id and secret

workaround to deal with golang/oauth2#320
shipperizer · Nov 12, 2024 · 714f7d1 · 714f7d1
1 parent 14fad3f
commit 714f7d1
Showing 1 changed file with 9 additions and 1 deletion.
diff --git a/internal/broker/broker.go b/internal/broker/broker.go
@@ -357,7 +357,15 @@ func (b *Broker) generateUILayout(session *sessionInfo, authModeID string) (map[
 	case authmodes.Device, authmodes.DeviceQr:
 		ctx, cancel := context.WithTimeout(context.Background(), maxRequestDuration)
 		defer cancel()
-		response, err := session.authCfg.oauth.DeviceAuth(ctx)
+
+		var opt oauth2.AuthCodeOption
+
+		if secret := session.authCfg.oauth.ClientSecret; secret != "" {
+			opt = oauth2.SetAuthURLParam("client_secret", secret)
+		}
+
+		response, err := session.authCfg.oauth.DeviceAuth(ctx, opt)
+
 		if err != nil {
 			return nil, fmt.Errorf("could not generate Device Authentication code layout: %v", err)
 		}