jwksを返却するエンドポイントを作成

internal/api/oauth.go

@@ -5,6 +5,7 @@ import (
 	"auth/internal/domain/oauth"
 	"auth/internal/usecase"
 	"context"
+	"encoding/json"
 	"errors"
 	"net/url"
 	"strings"
@@ -174,5 +175,17 @@ func toDAuthParams(params OAuthInterfaceAuthorizeParams) *oauth.AuthRequest {
 }
 
 func (s *Server) OAuthInterfaceGetJwks(ctx context.Context, request OAuthInterfaceGetJwksRequestObject) (OAuthInterfaceGetJwksResponseObject, error) {
-	panic("unimplemented")
+	set, err := s.OAuthUsecase.GetJWKs()
+	if err != nil {
+		return nil, err
+	}
+	data, err := json.Marshal(set)
+	if err != nil {
+		return nil, err
+	}
+	res := make(map[string]interface{})
+	if err := json.Unmarshal(data, &res); err != nil {
+		return nil, err
+	}
+	return OAuthInterfaceGetJwks200JSONResponse(res), nil
 }

internal/api/util.go

@@ -6,6 +6,7 @@ import (
 	"errors"
 	"net/http"
 	"net/url"
+	"reflect"
 	"strings"
 
 	"github.com/gorilla/securecookie"
@@ -116,3 +117,23 @@ var (
 	ErrUnauthorized      = errors.New("unauthorized")
 	ErrNotFoundInSession = errors.New("not found in session")
 )
+
+func toMap(obj interface{}) map[string]interface{} {
+	result := make(map[string]interface{})
+	value := reflect.ValueOf(obj)
+
+	if value.Kind() == reflect.Ptr {
+		value = value.Elem()
+	}
+	if value.Kind() != reflect.Struct {
+		return result
+	}
+
+	typ := reflect.TypeOf(obj)
+	for i := 0; i < value.NumField(); i++ {
+		field := typ.Field(i)
+		fieldValue := value.Field(i)
+		result[field.Name] = fieldValue.Interface()
+	}
+	return result
+}

internal/di/wire.go

@@ -26,6 +26,7 @@ func NewServer() *api.Server {
 		oauth.NewAuthCodeService,
 		oauth.NewRequestService,
 		oauth.NewTokenService,
+		oauth.NewJWKsService,
 		oauth.NewConfig,
 		gateway.NewClientRepo,
 		gateway.NewAuthCodeRepo,

internal/usecase/oauth.go

@@ -6,25 +6,30 @@ import (
 	"errors"
 	"fmt"
 	"slices"
+
+	"github.com/lestrrat-go/jwx/jwk"
 )
 
 type OAuthUsecase struct {
 	RequestService  *oauth.RequestService
 	AuthCodeService *oauth.AuthCodeService
 	ApprovalService *oauth.ApprovalService
 	TokenService    *oauth.TokenService
+	JWKsService     *oauth.JWKsService
 	ClientRepo      oauth.IClientRepo
 }
 
 func NewOAuthUsecase(
 	reqSvc *oauth.RequestService,
 	authCodeSvc *oauth.AuthCodeService,
+	jwksService *oauth.JWKsService,
 	approvalSvc *oauth.ApprovalService,
 	tokenSvc *oauth.TokenService,
 	clientRepo oauth.IClientRepo,
 ) *OAuthUsecase {
 	return &OAuthUsecase{
 		RequestService:  reqSvc,
+		JWKsService:     jwksService,
 		AuthCodeService: authCodeSvc,
 		ApprovalService: approvalSvc,
 		TokenService:    tokenSvc,
@@ -86,6 +91,14 @@ func (u *OAuthUsecase) RequestToken(req *TokenRequest) (*oauth.AccessToken, *oau
 	}
 }
 
+func (u *OAuthUsecase) GetJWKs() (jwk.Set, error) {
+	set, err := u.JWKsService.IssueJwks()
+	if err != nil {
+		return nil, fmt.Errorf("failed to issue jwks: %w", err)
+	}
+	return set, nil
+}
+
 var (
 	ErrPasswordNotMatch = errors.New("invalid password")
 	ErrNotApproved      = errors.New("not approved")

spec/schema/@typespec/openapi3/openapi.yaml

@@ -338,7 +338,8 @@ paths:
           content:
             application/json:
               schema:
-                type: string
+                type: object
+                additionalProperties: {}
   /oauth/token:
     post:
       operationId: OAuthInterface_getToken

spec/specs/oauth.tsp

@@ -115,6 +115,6 @@ interface OAuthInterface {
   @summary("Get JSON Web Key Set")
   getJwks(): {
     @statusCode statusCode: 200;
-    @body body: string;
+    @body body: Record<unknown>;
   };
 }