chore: update client auth related variables

panva · panva · commit 593cab50dd1d · 2025-04-17T16:22:04.000+02:00
diff --git a/lib/actions/authorization/index.js b/lib/actions/authorization/index.js
@@ -141,11 +141,11 @@ export default function authorizationAction(provider, endpoint) {
   use(() => deviceUserFlow.bind(undefined, allowList),                CV, DR         );
   use(() => parseBody,                                      A, DA,            PAR, BA);
   if (authRequired.has(endpoint)) {
-    const { params: authParams, middleware: tokenAuth } = getClientAuth(provider);
+    const { params: authParams, middleware: clientAuth } = getClientAuth(provider);
     use(() => paramsMiddleware.bind(undefined, authParams),    DA,            PAR, BA);
-    tokenAuth.forEach((tokenAuthMiddleware) => {
-      use(() => tokenAuthMiddleware,                           DA,            PAR, BA);
-    });
+    for (const clientAuthMiddlware of clientAuth) {
+      use(() => clientAuthMiddlware,                           DA,            PAR, BA);
+    }
   }
   use(() => authenticatedClientId,                             DA,                 BA);
   use(() => paramsMiddleware.bind(undefined, allowList),    A, DA,            PAR, BA);
diff --git a/lib/actions/introspection.js b/lib/actions/introspection.js
@@ -11,7 +11,7 @@ const introspectable = new Set(['AccessToken', 'ClientCredentials', 'RefreshToke
 const JWT = 'application/token-introspection+jwt';
 
 export default function introspectionAction(provider) {
-  const { params: authParams, middleware: tokenAuth } = getClientAuth(provider);
+  const { params: authParams, middleware: clientAuth } = getClientAuth(provider);
   const PARAM_LIST = new Set(['token', 'token_type_hint', ...authParams]);
   const { configuration } = instance(provider);
   const {
@@ -53,7 +53,7 @@ export default function introspectionAction(provider) {
     noCache,
     parseBody,
     paramsMiddleware.bind(undefined, PARAM_LIST),
-    ...tokenAuth,
+    ...clientAuth,
     rejectDupes.bind(undefined, {}),
 
     async function validateTokenPresence(ctx, next) {
diff --git a/lib/actions/revocation.js b/lib/actions/revocation.js
@@ -10,7 +10,7 @@ import revoke from '../helpers/revoke.js';
 const revokeable = new Set(['AccessToken', 'ClientCredentials', 'RefreshToken']);
 
 export default function revocationAction(provider) {
-  const { params: authParams, middleware: tokenAuth } = getClientAuth(provider);
+  const { params: authParams, middleware: clientAuth } = getClientAuth(provider);
   const PARAM_LIST = new Set(['token', 'token_type_hint', ...authParams]);
   const { grantTypeHandlers } = instance(provider);
 
@@ -39,7 +39,7 @@ export default function revocationAction(provider) {
   return [
     parseBody,
     paramsMiddleware.bind(undefined, PARAM_LIST),
-    ...tokenAuth,
+    ...clientAuth,
     rejectDupes.bind(undefined, {}),
 
     async function validateTokenPresence(ctx, next) {
diff --git a/lib/actions/token.js b/lib/actions/token.js
@@ -10,14 +10,14 @@ import paramsMiddleware from '../shared/assemble_params.js';
 const grantTypeSet = new Set(['grant_type']);
 
 export default function tokenAction(provider) {
-  const { params: authParams, middleware: tokenAuth } = getClientAuth(provider);
+  const { params: authParams, middleware: clientAuth } = getClientAuth(provider);
   const { grantTypeParams } = instance(provider);
 
   return [
     noCache,
     parseBody,
     paramsMiddleware.bind(undefined, grantTypeParams.get(undefined)),
-    ...tokenAuth,
+    ...clientAuth,
 
     rejectDupes.bind(undefined, { only: grantTypeSet }),
 
