Option to use GET Method for UserInfo Endpoint (OpenID Connect Core) #78
Description
Description:
According to the OpenID Connect Core 1.0 specification, the UserInfo Endpoint may be accessed using either the GET or POST HTTP methods. However, the current implementation of pas.plugins.oidc only supports the POST method when calling the UserInfo endpoint.
Feature request:
Enable support for making GET requests to the UserInfo endpoint. The underlying library already supports both GET and POST, but the current pas.plugins.oidc implementation restricts this to POST only.
I propose exposing a configuration option that lets administrators choose between GET and POST.
Benefits:
Greater compatibility with providers that only support or recommend the GET method. (In our case, we’re experiencing issues when using the POST method due to infrastructure constraints.)
I will open a pull request for this feature.