feat(oidc): add post route for /userinfo (#767)

scottmckendry · web-flow · commit 0d286d1864f5 · 2026-04-07T23:28:38.000+01:00
easy two-liner to pass `oidcc-userinfo-post-header` test in conformance
suite.
diff --git a/internal/controller/oidc_controller.go b/internal/controller/oidc_controller.go
@@ -70,6 +70,7 @@ func (controller *OIDCController) SetupRoutes() {
 	oidcGroup.POST("/authorize", controller.Authorize)
 	oidcGroup.POST("/token", controller.Token)
 	oidcGroup.GET("/userinfo", controller.Userinfo)
+	oidcGroup.POST("/userinfo", controller.Userinfo)
 }
 
 func (controller *OIDCController) GetClientInfo(c *gin.Context) {
diff --git a/internal/middleware/context_middleware.go b/internal/middleware/context_middleware.go
@@ -24,6 +24,7 @@ var (
 		"GET /api/oidc/clients",
 		"POST /api/oidc/token",
 		"GET /api/oidc/userinfo",
+		"POST /api/oidc/userinfo",
 		"GET /resources",
 		"POST /api/user/login",
 		"GET /.well-known/openid-configuration",

Original file line number	Diff line number	Diff line change
`@@ -70,6 +70,7 @@ func (controller *OIDCController) SetupRoutes() {`
`70`	`70`	`oidcGroup.POST("/authorize", controller.Authorize)`
`71`	`71`	`oidcGroup.POST("/token", controller.Token)`
`72`	`72`	`oidcGroup.GET("/userinfo", controller.Userinfo)`
	`73`	`+ oidcGroup.POST("/userinfo", controller.Userinfo)`
`73`	`74`	`}`
`74`	`75`
`75`	`76`	`func (controller OIDCController) GetClientInfo(c gin.Context) {`