fix: improve oidc strategy

Author: boyander

src/api/strategies/oidc.strategy.ts

@@ -1,16 +1,24 @@
-import { create_base_client } from "../base_client";
 import { AuthStrategyBuilder } from "./types";
+import axios from 'axios'
 
+type TokenExchange = {access_token:string, token_type:string, expires_in:number}
 
-type TokenExchange = {token:string, app_id:string}
 
+const auth = axios.create({
+  baseURL:"https://faable.auth.staging.faable.link",
+  
+})
 const exchangeGithubOidcToken = async(gh_token:string)=>{
-  const client = create_base_client()
-  const res = await client.post<TokenExchange>("/auth/github-oidc",{
-    token:gh_token
+
+  const res = await auth.post<TokenExchange>("/oauth/token",{
+    grant_type:"urn:ietf:params:oauth:grant-type:token-exchange",
+    subject_token_type:"urn:ietf:params:oauth:token-type:jwt",
+    subject_token:gh_token,
+    resource:"https://faable.com",
+    audience:"https://faable.com",
+    scope:"openid email profile",
   })
-  const {token, app_id} =res.data
-  return {token, app_id}
+  return res.data
 }
 
 export const oidc_strategy: AuthStrategyBuilder<{idToken:string}> = (
@@ -30,15 +38,15 @@ export const oidc_strategy: AuthStrategyBuilder<{idToken:string}> = (
         token_ex = ex
       }
       return {
-        Authorization: `Bearer ${token_ex.token}`,
+        Authorization: `Bearer ${token_ex.access_token}`,
       };
     },
     app_id: async () => {
       if(!token_ex){
         const ex = await exchangeGithubOidcToken(idToken)
         token_ex = ex
       }
-      return token_ex.app_id;
+      return token_ex.access_token;
     }
   };
 };

src/commands/link/index.ts

@@ -64,7 +64,7 @@ export const link: CommandModule<object, Options> = {
     const apps = await api.list();
 
     if (apps.length === 0) {
-      log.error("No apps found in your account. Create one first at https://faable.cloud");
+      log.error("No apps found in your account. Create one first at https://faable.com");
       return;
     }