mod_http_oauth2: Declare https as required of URIs in schema If util.jsonschema happens to gain support for 'pattern' (regular expression validation) then this would be picked up. Until then, declarative annotations are nice.

author: Kim Alvefur <zash@zash.se>
date: Sat, 22 Apr 2023 14:06:41 +0200
parent: 5355:41a418ebc60b
child: 5357:eda3b078ba2c
--- a/mod_http_oauth2/mod_http_oauth2.lua	Sat Apr 22 12:02:01 2023 +0200
+++ b/mod_http_oauth2/mod_http_oauth2.lua	Sat Apr 22 14:06:41 2023 +0200
@@ -658,13 +658,13 @@
 		};
 		response_types = { type = "array"; items = { type = "string"; enum = { "code"; "token" } } };
 		client_name = { type = "string" };
-		client_uri = { type = "string"; format = "uri" };
-		logo_uri = { type = "string"; format = "uri" };
+		client_uri = { type = "string"; format = "uri"; pattern = "^https:" };
+		logo_uri = { type = "string"; format = "uri"; pattern = "^https:"  };
 		scope = { type = "string" };
 		contacts = { type = "array"; items = { type = "string" } };
-		tos_uri = { type = "string"; format = "uri" };
-		policy_uri = { type = "string"; format = "uri" };
-		jwks_uri = { type = "string"; format = "uri" };
+		tos_uri = { type = "string"; format = "uri"; pattern = "^https:"  };
+		policy_uri = { type = "string"; format = "uri"; pattern = "^https:"  };
+		jwks_uri = { type = "string"; format = "uri"; pattern = "^https:"  };
 		jwks = { type = "object"; description = "JSON Web Key Set, RFC 7517" };
 		software_id = { type = "string"; format = "uuid" };
 		software_version = { type = "string" };