fix: mismatched issuer origin for idp

tests/app/README.md

@@ -29,7 +29,7 @@ password: password
   You can update data in the IDP and then dump the data to a new seed file as follows.
 
   ```
-  python -Xutf8 ./manage.py dumpdata -e sessions  -e admin.logentry -e auth.permission -e contenttypes.contenttype --natural-foreign --natural-primary --indent 2 > fixtures/seed.json
+python -Xutf8 ./manage.py dumpdata -e sessions  -e admin.logentry -e auth.permission -e contenttypes.contenttype -e oauth2_provider.accesstoken  -e oauth2_provider.refreshtoken -e oauth2_provider.idtoken --natural-foreign --natural-primary --indent 2 > fixtures/seed.json
   ```
 
 ## /test/app/rp

tests/app/idp/README.md

@@ -1,16 +1,3 @@
 # TEST IDP
 
-This is an example IDP implementation for end to end testing.
-
-username: superuser
-password: password
-
-## Development Tasks
-
-* update fixtures
-
-  ```
-  python -Xutf8 ./manage.py dumpdata -e sessions  -e admin.logentry -e auth.permission -e contenttypes.contenttype -e oauth2_provider.grant -e oauth2_provider.accesstoken -e oauth2_provider.refreshtoken -e oauth2_provider.idtoken --natural-foreign --natural-primary --indent 2 > fixtures/seed.json
-  ```
-
-  *check seeds as you produce them to makre sure any unrequired models are excluded to keep our seeds as small as possible.*
+see ../README.md

tests/app/idp/fixtures/seed.json

@@ -1,37 +1,38 @@
-[
-{
-  "model": "auth.user",
-  "fields": {
-    "password": "pbkdf2_sha256$390000$29LoVHfFRlvEOJ9clv73Wx$fx5ejfUJ+nYsnBXFf21jZvDsq4o3p5io3TrAGKAVTq4=",
-    "last_login": "2023-10-05T14:39:15.980Z",
-    "is_superuser": true,
-    "username": "superuser",
-    "first_name": "",
-    "last_name": "",
-    "email": "",
-    "is_staff": true,
-    "is_active": true,
-    "date_joined": "2023-05-01T19:53:59.622Z",
-    "groups": [],
-    "user_permissions": []
-  }
-},
-{
-  "model": "oauth2_provider.application",
-  "fields": {
-    "client_id": "2EIxgjlyy5VgCp2fjhEpKLyRtSMMPK0hZ0gBpNdm",
-    "user": null,
-    "redirect_uris": "http://localhost:5173\r\nhttp://127.0.0.1:5173",
-    "post_logout_redirect_uris": "http://localhost:5173\r\nhttp://127.0.0.1:5173",
-    "client_type": "public",
-    "authorization_grant_type": "authorization-code",
-    "client_secret": "pbkdf2_sha256$600000$HEYByn6WXiQUI1D6ezTnAf$qPLekt0t3ZssnzEOvQkeOSfxx7tbs/gcC3O0CthtP2A=",
-    "hash_client_secret": true,
-    "name": "OIDC - Authorization Code",
-    "skip_authorization": true,
-    "created": "2023-05-01T20:27:46.167Z",
-    "updated": "2023-05-11T16:37:21.669Z",
-    "algorithm": "RS256"
-  }
-}
-]
+[
+{
+  "model": "auth.user",
+  "fields": {
+    "password": "pbkdf2_sha256$390000$29LoVHfFRlvEOJ9clv73Wx$fx5ejfUJ+nYsnBXFf21jZvDsq4o3p5io3TrAGKAVTq4=",
+    "last_login": "2023-11-11T17:24:19.359Z",
+    "is_superuser": true,
+    "username": "superuser",
+    "first_name": "",
+    "last_name": "",
+    "email": "",
+    "is_staff": true,
+    "is_active": true,
+    "date_joined": "2023-05-01T19:53:59.622Z",
+    "groups": [],
+    "user_permissions": []
+  }
+},
+{
+  "model": "oauth2_provider.application",
+  "fields": {
+    "client_id": "2EIxgjlyy5VgCp2fjhEpKLyRtSMMPK0hZ0gBpNdm",
+    "user": null,
+    "redirect_uris": "http://localhost:5173\r\nhttp://127.0.0.1:5173",
+    "post_logout_redirect_uris": "http://localhost:5173\r\nhttp://127.0.0.1:5173",
+    "client_type": "public",
+    "authorization_grant_type": "authorization-code",
+    "client_secret": "pbkdf2_sha256$600000$HEYByn6WXiQUI1D6ezTnAf$qPLekt0t3ZssnzEOvQkeOSfxx7tbs/gcC3O0CthtP2A=",
+    "hash_client_secret": true,
+    "name": "OIDC - Authorization Code",
+    "skip_authorization": true,
+    "created": "2023-05-01T20:27:46.167Z",
+    "updated": "2023-11-11T17:23:44.643Z",
+    "algorithm": "RS256",
+    "allowed_origins": "http://localhost:5173\r\nhttp://127.0.0.1:5173"
+  }
+}
+]

tests/app/rp/src/routes/+page.svelte

@@ -20,7 +20,7 @@ const metadata = {};
 
 {#if browser}
 <OidcContext
- issuer="http://127.0.0.1:8000/o"
+ issuer="http://localhost:8000/o"
  client_id="2EIxgjlyy5VgCp2fjhEpKLyRtSMMPK0hZ0gBpNdm"
  redirect_uri="http://localhost:5173"
  post_logout_redirect_uri="http://localhost:5173"