rename structs

samthanawalla · samthanawalla · commit d4ee5e971228 · 2025-09-24T17:34:10.000Z
diff --git a/internal/oauthex/auth_meta.go b/internal/oauthex/auth_meta.go
@@ -112,8 +112,8 @@ type AuthServerMeta struct {
 	CodeChallengeMethodsSupported []string `json:"code_challenge_methods_supported,omitempty"`
 }
 
-// AuthClientMeta represents the client metadata fields for the DCR POST request (RFC 7591).
-type AuthClientMeta struct {
+// ClientRegistrationMetadata represents the client metadata fields for the DCR POST request (RFC 7591).
+type ClientRegistrationMetadata struct {
 	// RedirectURIs is a REQUIRED JSON array of redirection URI strings for use in
 	// redirect-based flows (such as the authorization code grant).
 	RedirectURIs []string `json:"redirect_uris"`
@@ -180,12 +180,12 @@ type AuthClientMeta struct {
 	SoftwareStatement string `json:"software_statement,omitempty"`
 }
 
-// AuthClientInformation represents the fields returned by the Authorization Server
+// ClientRegistrationResponse represents the fields returned by the Authorization Server
 // (RFC 7591, Section 3.2.1 and 3.2.2).
-type AuthClientInformation struct {
-	// AuthClientMeta contains all registered client metadata, returned by the
+type ClientRegistrationResponse struct {
+	// ClientRegistrationMetadata contains all registered client metadata, returned by the
 	// server on success, potentially with modified or defaulted values.
-	AuthClientMeta
+	ClientRegistrationMetadata
 
 	// ClientID is the REQUIRED newly issued OAuth 2.0 client identifier.
 	ClientID string `json:"client_id"`
@@ -202,16 +202,20 @@ type AuthClientInformation struct {
 	ClientSecretExpiresAt int64 `json:"client_secret_expires_at,omitempty"`
 }
 
-// AuthClientRegistrationError is the error response from the Authorization Server
+// ClientRegistrationError is the error response from the Authorization Server
 // for a failed registration attempt (RFC 7591, Section 3.2.2).
-type AuthClientRegistrationError struct {
-	// Error is the REQUIRED error code if registration failed (RFC 7591, 3.2.2).
-	Error string `json:"error"`
+type ClientRegistrationError struct {
+	// ErrorCode is the REQUIRED error code if registration failed (RFC 7591, 3.2.2).
+	ErrorCode string `json:"error"`
 
 	// ErrorDescription is an OPTIONAL human-readable error message.
 	ErrorDescription string `json:"error_description,omitempty"`
 }
 
+func (e *ClientRegistrationError) Error() string {
+	return fmt.Sprintf("registration failed: %s (%s)", e.ErrorCode, e.ErrorDescription)
+}
+
 var wellKnownPaths = []string{
 	"/.well-known/oauth-authorization-server",
 	"/.well-known/openid-configuration",
@@ -248,9 +252,9 @@ func GetAuthServerMeta(ctx context.Context, issuerURL string, c *http.Client) (*
 }
 
 // RegisterClient performs Dynamic Client Registration according to RFC 7591.
-func RegisterClient(ctx context.Context, serverMeta *AuthServerMeta, clientMeta *AuthClientMeta, c *http.Client) (*AuthClientInformation, error) {
-	if serverMeta == nil || serverMeta.RegistrationEndpoint == "" {
-		return nil, fmt.Errorf("server metadata does not contain a registration_endpoint")
+func RegisterClient(ctx context.Context, registrationEndpoint string, clientMeta *ClientRegistrationMetadata, c *http.Client) (*ClientRegistrationResponse, error) {
+	if registrationEndpoint == "" {
+		return nil, fmt.Errorf("registration_endpoint is required")
 	}
 
 	if c == nil {
@@ -262,7 +266,7 @@ func RegisterClient(ctx context.Context, serverMeta *AuthServerMeta, clientMeta
 		return nil, fmt.Errorf("failed to marshal client metadata: %w", err)
 	}
 
-	req, err := http.NewRequestWithContext(ctx, "POST", serverMeta.RegistrationEndpoint, bytes.NewBuffer(payload))
+	req, err := http.NewRequestWithContext(ctx, "POST", registrationEndpoint, bytes.NewBuffer(payload))
 	if err != nil {
 		return nil, fmt.Errorf("failed to create registration request: %w", err)
 	}
@@ -282,22 +286,22 @@ func RegisterClient(ctx context.Context, serverMeta *AuthServerMeta, clientMeta
 	}
 
 	if resp.StatusCode == http.StatusCreated {
-		var authClientInfo AuthClientInformation
-		if err := json.Unmarshal(body, &authClientInfo); err != nil {
+		var regResponse ClientRegistrationResponse
+		if err := json.Unmarshal(body, &regResponse); err != nil {
 			return nil, fmt.Errorf("failed to decode successful registration response: %w (%s)", err, string(body))
 		}
-		if authClientInfo.ClientID == "" {
+		if regResponse.ClientID == "" {
 			return nil, fmt.Errorf("registration response is missing required 'client_id' field")
 		}
-		return &authClientInfo, nil
+		return &regResponse, nil
 	}
 
 	if resp.StatusCode == http.StatusBadRequest {
-		var regError AuthClientRegistrationError
+		var regError ClientRegistrationError
 		if err := json.Unmarshal(body, &regError); err != nil {
 			return nil, fmt.Errorf("failed to decode registration error response: %w (%s)", err, string(body))
 		}
-		return nil, fmt.Errorf("registration failed: %s (%s)", regError.Error, regError.ErrorDescription)
+		return nil, &regError
 	}
 
 	return nil, fmt.Errorf("registration failed with status %s: %s", resp.Status, string(body))
diff --git a/internal/oauthex/auth_meta_test.go b/internal/oauthex/auth_meta_test.go
@@ -16,7 +16,7 @@ import (
 	"testing"
 )
 
-func TestAuthServerMetaParse(t *testing.T) {
+func TestAuthMetaParse(t *testing.T) {
 	// Verify that we parse Google's auth server metadata.
 	data, err := os.ReadFile(filepath.FromSlash("testdata/google-auth-meta.json"))
 	if err != nil {
@@ -32,13 +32,13 @@ func TestAuthServerMetaParse(t *testing.T) {
 	}
 }
 
-func TestAuthClientMetaParse(t *testing.T) {
+func TestClientRegistrationMetadataParse(t *testing.T) {
 	// Verify that we can parse a typical client metadata JSON.
 	data, err := os.ReadFile(filepath.FromSlash("testdata/client-auth-meta.json"))
 	if err != nil {
 		t.Fatal(err)
 	}
-	var a AuthClientMeta
+	var a ClientRegistrationMetadata
 	if err := json.Unmarshal(data, &a); err != nil {
 		t.Fatal(err)
 	}
@@ -55,7 +55,7 @@ func TestRegisterClient(t *testing.T) {
 	testCases := []struct {
 		name         string
 		handler      http.HandlerFunc
-		clientMeta   *AuthClientMeta
+		clientMeta   *ClientRegistrationMetadata
 		wantClientID string
 		wantErr      string
 	}{
@@ -69,7 +69,7 @@ func TestRegisterClient(t *testing.T) {
 				if err != nil {
 					t.Fatal(err)
 				}
-				var receivedMeta AuthClientMeta
+				var receivedMeta ClientRegistrationMetadata
 				if err := json.Unmarshal(body, &receivedMeta); err != nil {
 					t.Fatalf("Failed to unmarshal request body: %v", err)
 				}
@@ -80,36 +80,36 @@ func TestRegisterClient(t *testing.T) {
 				w.WriteHeader(http.StatusCreated)
 				w.Write([]byte(`{"client_id":"test-client-id","client_secret":"test-client-secret","client_name":"Test App"}`))
 			},
-			clientMeta:   &AuthClientMeta{ClientName: "Test App", RedirectURIs: []string{"http://localhost/cb"}},
+			clientMeta:   &ClientRegistrationMetadata{ClientName: "Test App", RedirectURIs: []string{"http://localhost/cb"}},
 			wantClientID: "test-client-id",
 		},
 		{
-			name: "Error - Missing ClientID in Response",
+			name: "Missing ClientID in Response",
 			handler: func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("Content-Type", "application/json")
 				w.WriteHeader(http.StatusCreated)
 				w.Write([]byte(`{"client_secret":"test-client-secret"}`)) // No client_id
 			},
-			clientMeta: &AuthClientMeta{RedirectURIs: []string{"http://localhost/cb"}},
+			clientMeta: &ClientRegistrationMetadata{RedirectURIs: []string{"http://localhost/cb"}},
 			wantErr:    "registration response is missing required 'client_id' field",
 		},
 		{
-			name: "Error - Standard OAuth Error",
+			name: "Standard OAuth Error",
 			handler: func(w http.ResponseWriter, r *http.Request) {
 				w.Header().Set("Content-Type", "application/json")
 				w.WriteHeader(http.StatusBadRequest)
 				w.Write([]byte(`{"error":"invalid_redirect_uri","error_description":"Redirect URI is not valid."}`))
 			},
-			clientMeta: &AuthClientMeta{RedirectURIs: []string{"http://invalid/cb"}},
+			clientMeta: &ClientRegistrationMetadata{RedirectURIs: []string{"http://invalid/cb"}},
 			wantErr:    "registration failed: invalid_redirect_uri (Redirect URI is not valid.)",
 		},
 		{
-			name: "Error - Non-JSON Server Error",
+			name: "Non-JSON Server Error",
 			handler: func(w http.ResponseWriter, r *http.Request) {
 				w.WriteHeader(http.StatusInternalServerError)
 				w.Write([]byte("Internal Server Error"))
 			},
-			clientMeta: &AuthClientMeta{RedirectURIs: []string{"http://localhost/cb"}},
+			clientMeta: &ClientRegistrationMetadata{RedirectURIs: []string{"http://localhost/cb"}},
 			wantErr:    "registration failed with status 500 Internal Server Error",
 		},
 	}
@@ -119,8 +119,7 @@ func TestRegisterClient(t *testing.T) {
 			server := httptest.NewServer(tc.handler)
 			defer server.Close()
 
-			serverMeta := &AuthServerMeta{RegistrationEndpoint: server.URL}
-			info, err := RegisterClient(context.Background(), serverMeta, tc.clientMeta, server.Client())
+			info, err := RegisterClient(context.Background(), server.URL, tc.clientMeta, server.Client())
 
 			if tc.wantErr != "" {
 				if err == nil {
@@ -141,13 +140,12 @@ func TestRegisterClient(t *testing.T) {
 		})
 	}
 
-	t.Run("Error - No Endpoint in Metadata", func(t *testing.T) {
-		serverMeta := &AuthServerMeta{Issuer: "http://localhost"} // No RegistrationEndpoint
-		_, err := RegisterClient(context.Background(), serverMeta, &AuthClientMeta{}, nil)
+	t.Run("No Endpoint", func(t *testing.T) {
+		_, err := RegisterClient(context.Background(), "", &ClientRegistrationMetadata{}, nil)
 		if err == nil {
 			t.Fatal("Expected an error for missing registration endpoint, got nil")
 		}
-		expectedErr := "server metadata does not contain a registration_endpoint"
+		expectedErr := "registration_endpoint is required"
 		if err.Error() != expectedErr {
 			t.Errorf("Expected error '%s', got '%v'", expectedErr, err)
 		}
