Add extra claims in Manager (#184)

lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Attributes.pm

@@ -2036,6 +2036,7 @@ m{^(?:ldapi://[^/]*/?|\w[\w\-\.]*(?::\d{1,5})?|ldap(?:s|\+tls)?://\w[\w\-\.]*(?:
         oidcRPMetaDataOptionsIDTokenExpiration     => { type => 'int', },
         oidcRPMetaDataOptionsAccessTokenExpiration => { type => 'int', },
         oidcRPMetaDataOptionsRedirectUris          => { type => 'text', },
+        oidcRPMetaDataOptionsExtraClaims => { type => 'keyTextContainer', },
 
     };
 }

lemonldap-ng-manager/lib/Lemonldap/NG/Manager/CTrees.pm

@@ -185,7 +185,8 @@ sub cTrees {
                     'oidcRPMetaDataOptionsIDTokenSignAlg',
                     'oidcRPMetaDataOptionsIDTokenExpiration',
                     'oidcRPMetaDataOptionsAccessTokenExpiration',
-                    'oidcRPMetaDataOptionsRedirectUris'
+                    'oidcRPMetaDataOptionsRedirectUris',
+                    'oidcRPMetaDataOptionsExtraClaims'
                 ]
             },
         ],

lemonldap-ng-manager/lib/Lemonldap/NG/Manager/Constants.pm

@@ -22,7 +22,7 @@ our $specialNodeHash = {
 our $simpleHashKeys = '(?:(?:g(?:r(?:antSessionRule|oup)|lobalStorageOption|oogleExportedVar)|l(?:o(?:calSessionStorageOption|goutService)|dapExportedVar)|(?:(?:d(?:emo|bi)|facebook|webID)E|e)xportedVar|(?:ca(?:ptcha|s)|notification)StorageOption|p(?:ersistentStorageOption|ortalSkinRule)|re(?:moteGlobalStorageOption|loadUrl)|CAS_proxiedService|macro)s|o(?:idcS(?:erviceMetaDataAuthnContext|torageOptions)|penIdExportedVars)|s(?:(?:amlStorageOption|laveExportedVar)s|essionDataToRemember)|a(?:uthChoiceModules|pplicationList))';
 our $specialNodeKeys = '(?:(?:saml(?:ID|S)|oidc[OR])PMetaDataNode|virtualHost)s';
 our $oidcOPMetaDataNodeKeys = 'oidcOPMetaData(?:Options(?:C(?:lient(?:Secret|ID)|heckJWTSignature|onfigurationURI)|TokenEndpointAuthMethod|(?:JWKSTimeou|Promp)t|I(?:DTokenMaxAge|con)|U(?:iLocales|seNonce)|Display(?:Name)?|(?:MaxAg|Scop)e|AcrValues)|ExportedVars|J(?:SON|WKS))';
-our $oidcRPMetaDataNodeKeys = 'oidcRPMetaData(?:Options(?:I(?:DToken(?:Expiration|SignAlg)|con)|AccessTokenExpiration|Client(?:Secret|ID)|RedirectUris|DisplayName|UserIDAttr)|ExportedVars)';
+our $oidcRPMetaDataNodeKeys = 'oidcRPMetaData(?:Options(?:I(?:DToken(?:Expiration|SignAlg)|con)|(?:RedirectUri|ExtraClaim)s|AccessTokenExpiration|Client(?:Secret|ID)|DisplayName|UserIDAttr)|ExportedVars)';
 our $samlIDPMetaDataNodeKeys = 'samlIDPMetaData(?:Options(?:A(?:llow(?:LoginFromIDP|ProxiedAuthn)|daptSessionUtime)|Check(?:S[LS]OMessageSignature|Conditions)|(?:RequestedAuthnContex|NameIDForma)t|S(?:ignS[LS]OMessage|[LS]OBinding)|(?:EncryptionMod|IsPassiv)e|Force(?:Authn|UTF8))|ExportedAttributes|XML)';
 our $samlSPMetaDataNodeKeys = 'samlSPMetaData(?:Options(?:N(?:ameID(?:SessionKey|Format)|otOnOrAfterTimeout)|S(?:essionNotOnOrAfterTimeout|ignS[LS]OMessage)|(?:CheckS[LS]OMessageSignatur|OneTimeUs)e|En(?:ableIDPInitiatedURL|cryptionMode))|ExportedAttributes|XML)';
 our $virtualHostKeys = '(?:vhost(?:(?:Aliase|Http)s|Maintenance|Port)|(?:exportedHeader|locationRule)s|post)';

lemonldap-ng-manager/site/static/languages/en.json

@@ -371,6 +371,7 @@
   "oidcOPMetaDataOptionsIDTokenMaxAge": "ID Token max age",
   "oidcOPMetaDataOptionsUseNonce": "Use nonce",
   "oidcRPMetaDataOptionsRedirectUris": "Redirection addresses",
+  "oidcRPMetaDataOptionsExtraClaims": "Extra claims",
   "oidcServiceMetaDataIssuer": "Issuer identifier",
   "oidcServiceMetaDataTokenURI": "Token",
   "oidcServiceMetaDataUserInfoURI": "User Info",

lemonldap-ng-manager/site/static/languages/fr.json

@@ -371,6 +371,7 @@
   "oidcOPMetaDataOptionsIDTokenMaxAge": "Âge maximum du jeton ID",
   "oidcOPMetaDataOptionsUseNonce": "Utilisation du nonce",
   "oidcRPMetaDataOptionsRedirectUris": "Adresses de redirection",
+  "oidcRPMetaDataOptionsExtraClaims": "Déclarations supplémentaires",
   "oidcServiceMetaDataIssuer": "Identifiant du fournisseur",
   "oidcServiceMetaDataTokenURI": "Jeton",
   "oidcServiceMetaDataUserInfoURI": "Informations Utilisateur",