From 1fd4c2fea53ffc69d95f0790d671b30e45a99c17 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Nicolas=20Mass=C3=A9?= <nicolas.masse@itix.fr>
Date: Thu, 24 Jan 2019 10:45:46 +0100
Subject: [PATCH] see #37: the authorizationUrl and tokenUrl are set according
 to the oauth flow

---
 templates/rewritten_openapi.j2 | 7 ++++++-
 1 file changed, 6 insertions(+), 1 deletion(-)

diff --git a/templates/rewritten_openapi.j2 b/templates/rewritten_openapi.j2
index a19e4dd..28178d1 100644
--- a/templates/rewritten_openapi.j2
+++ b/templates/rewritten_openapi.j2
@@ -2,7 +2,12 @@
 {% set new_openapi = threescale_cicd_openapi_file_content %}
 {# Add the RH-SSO endpoints to the OpenAPI securityDefinitions #}
 {% if threescale_cicd_api_security_scheme.type == "oauth2" %}
-{% do security_definitions[threescale_cicd_api_security_scheme_name].update({ "authorizationUrl": threescale_cicd_sso_realm_endpoint ~ "/protocol/openid-connect/auth", "tokenUrl": threescale_cicd_sso_realm_endpoint ~ "/protocol/openid-connect/token" }) %}
+{% if threescale_cicd_api_security_scheme.flow == "implicit" or threescale_cicd_api_security_scheme.flow == "accessCode" %}
+{% do security_definitions[threescale_cicd_api_security_scheme_name].update({ "authorizationUrl": threescale_cicd_sso_realm_endpoint ~ "/protocol/openid-connect/auth" }) %}
+{% endif %}
+{% if threescale_cicd_api_security_scheme.flow == "password" or threescale_cicd_api_security_scheme.flow == "application" or threescale_cicd_api_security_scheme.flow == "accessCode" %}
+{% do security_definitions[threescale_cicd_api_security_scheme_name].update({ "tokenUrl": threescale_cicd_sso_realm_endpoint ~ "/protocol/openid-connect/token" }) %}
+{% endif %}
 {% endif %}
 {# Add the RH-SSO default scope to the OpenAPI securityDefinitions #}
 {% if threescale_cicd_api_security_scheme.type == "oauth2" and "scopes" not in threescale_cicd_api_security_scheme %}