From 5eb5e2f7b0407680df9dfa78ed55747fcd313670 Mon Sep 17 00:00:00 2001
From: Mark Steve Samson <marksteve@thinkingmachin.es>
Date: Sat, 21 Mar 2020 09:53:26 +0800
Subject: [PATCH] Add audience parameter to token request

This is for making oidc authentication compatible with Auth0
https://auth0.com/docs/api-auth/tutorials/client-credentials
---
 models/auth/oidc.go | 10 ++++++----
 1 file changed, 6 insertions(+), 4 deletions(-)

diff --git a/models/auth/oidc.go b/models/auth/oidc.go
index b38b1c08..6ef07a40 100644
--- a/models/auth/oidc.go
+++ b/models/auth/oidc.go
@@ -17,6 +17,7 @@ package auth
 import (
 	"context"
 	"fmt"
+	"net/url"
 
 	"github.com/fatedier/frp/models/msg"
 
@@ -148,10 +149,11 @@ type OidcAuthProvider struct {
 
 func NewOidcAuthSetter(baseCfg baseConfig, cfg oidcClientConfig) *OidcAuthProvider {
 	tokenGenerator := &clientcredentials.Config{
-		ClientID:     cfg.OidcClientId,
-		ClientSecret: cfg.OidcClientSecret,
-		Scopes:       []string{cfg.OidcAudience},
-		TokenURL:     cfg.OidcTokenEndpointUrl,
+		ClientID:       cfg.OidcClientId,
+		ClientSecret:   cfg.OidcClientSecret,
+		Scopes:         []string{cfg.OidcAudience},
+		TokenURL:       cfg.OidcTokenEndpointUrl,
+		EndpointParams: url.Values{"audience": []string{cfg.OidcAudience}},
 	}
 
 	return &OidcAuthProvider{