Merge pull request #390 from supertokens/fix/linkedin-oauth

rishabhpoddar · web-flow · commit a8d166230f4e · 2023-12-06T12:09:55.000+05:30
fix: LinkedIn OAuth
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -7,6 +7,9 @@ and this project adheres to [Semantic Versioning](https://semver.org/spec/v2.0.0
 
 ## [unreleased]
 
+## [0.17.2] - 2023-12-06
+
+- Updates LinkedIn OAuth implementation as per the latest [changes](https://learn.microsoft.com/en-us/linkedin/consumer/integrations/self-serve/sign-in-with-linkedin-v2?context=linkedin%2Fconsumer%2Fcontext#authenticating-members).
 
 ## [0.17.1] - 2023-11-24
 
diff --git a/recipe/thirdparty/providers/linkedin.go b/recipe/thirdparty/providers/linkedin.go
@@ -31,7 +31,8 @@ func Linkedin(input tpmodels.ProviderInput) *tpmodels.TypeProvider {
 			}
 
 			if len(config.Scope) == 0 {
-				config.Scope = []string{"r_emailaddress", "r_liteprofile"}
+				// https://learn.microsoft.com/en-us/linkedin/consumer/integrations/self-serve/sign-in-with-linkedin-v2?context=linkedin%2Fconsumer%2Fcontext#authenticating-members
+				config.Scope = []string{"openid", "profile", "email"}
 			}
 
 			return config, nil
@@ -47,38 +48,18 @@ func Linkedin(input tpmodels.ProviderInput) *tpmodels.TypeProvider {
 				"Authorization": "Bearer " + accessToken,
 			}
 			rawUserInfoFromProvider := tpmodels.TypeRawUserInfoFromProvider{}
-			userInfoFromAccessToken, err := doGetRequest("https://api.linkedin.com/v2/me", nil, headers)
+			// https://learn.microsoft.com/en-us/linkedin/consumer/integrations/self-serve/sign-in-with-linkedin-v2?context=linkedin%2Fconsumer%2Fcontext#sample-api-response
+			userInfoFromAccessToken, err := doGetRequest("https://api.linkedin.com/v2/userinfo", nil, headers)
 			if err != nil {
 				return tpmodels.TypeUserInfo{}, err
 			}
 			rawUserInfoFromProvider.FromUserInfoAPI = userInfoFromAccessToken.(map[string]interface{})
 
-			emailAPIURL := "https://api.linkedin.com/v2/emailAddress?q=members&projection=(elements*(handle~))"
-			userInfoFromEmail, err := doGetRequest(emailAPIURL, nil, headers)
-			if err != nil {
-				return tpmodels.TypeUserInfo{}, err
-			}
-
-			elements := userInfoFromEmail.(map[string]interface{})["elements"].([]interface{})
-			for _, elem := range elements {
-				if elemMap, ok := elem.(map[string]interface{}); ok {
-					for k, v := range elemMap {
-						if k == "handle~" {
-							emailMap := v.(map[string]interface{})
-							rawUserInfoFromProvider.FromUserInfoAPI["email"] = emailMap["emailAddress"]
-						}
-					}
-				}
-			}
-
-			for k, v := range userInfoFromEmail.(map[string]interface{}) {
-				rawUserInfoFromProvider.FromUserInfoAPI[k] = v
-			}
-
 			userInfoResult := tpmodels.TypeUserInfo{
-				ThirdPartyUserId: rawUserInfoFromProvider.FromUserInfoAPI["id"].(string),
+				ThirdPartyUserId: rawUserInfoFromProvider.FromUserInfoAPI["sub"].(string),
 				Email: &tpmodels.EmailStruct{
-					ID: rawUserInfoFromProvider.FromUserInfoAPI["email"].(string),
+					ID:         rawUserInfoFromProvider.FromUserInfoAPI["email"].(string),
+					IsVerified: rawUserInfoFromProvider.FromUserInfoAPI["email_verified"].(bool),
 				},
 			}
 
diff --git a/supertokens/constants.go b/supertokens/constants.go
@@ -21,7 +21,7 @@ const (
 )
 
 // VERSION current version of the lib
-const VERSION = "0.17.1"
+const VERSION = "0.17.2"
 
 var (
 	cdiSupported = []string{"3.0"}

Original file line number	Diff line number	Diff line change
`@@ -21,7 +21,7 @@ const (`
`21`	`21`	`)`
`22`	`22`
`23`	`23`	`// VERSION current version of the lib`
`24`		`-const VERSION = "0.17.1"`
	`24`	`+const VERSION = "0.17.2"`
`25`	`25`
`26`	`26`	`var (`
`27`	`27`	`cdiSupported = []string{"3.0"}`