Merge pull request #357 from jnummelin/fix/refresh-token-storing

Fix OIDC refresh token storage with user auth config

Author: k8s-ci-robot

src/oidc_auth.ts

@@ -51,6 +51,7 @@ export class OpenIDConnectAuth implements Authenticator {
         if (Date.now() / 1000 > this.currentTokenExpiration) {
             const newToken = await client.refresh(user.authProvider.config['refresh-token']);
             user.authProvider.config['id-token'] = newToken.id_token;
+            user.authProvider.config['refresh-token'] = newToken.refresh_token;
             this.currentTokenExpiration = newToken.expires_at || 0;
         }
         return user.authProvider.config['id-token'];

src/oidc_auth_test.ts

@@ -171,11 +171,14 @@ describe('OIDCAuth', () => {
                 return {
                     expires_at: newExpiration,
                     id_token: 'newToken',
+                    refresh_token: 'newRefreshToken',
                 };
             },
         });
         expect(opts.headers.Authorization).to.equal('Bearer newToken');
         expect((auth as any).currentTokenExpiration).to.equal(newExpiration);
+        // Check also the new refresh token sticks in the user config
+        expect(user.authProvider.config['refresh-token']).to.equal('newRefreshToken');
     });
 
     it('return a new token when the its the first time we see this user', async () => {