create_rodauth_oauth.rb in rodauth-oauth-1.4.0

- old
+ new

@@ -57,10 +57,18 @@
       t.string :tls_client_auth_san_email, null: true
       t.boolean :tls_client_certificate_bound_access_tokens, default: false
 
       # :oidc_rp_initiated_logout enabled
       t.string :post_logout_redirect_uris, null: false
+
+      # frontchannel logout
+      t.string :frontchannel_logout_uri
+      t.boolean :frontchannel_logout_session_required, default: false
+
+      # backchannel logout
+      t.string :backchannel_logout_uri
+      t.boolean :backchannel_logout_session_required, default: false
     end
 
     create_table :oauth_grants do |t|
       t.bigint :account_id
       t.foreign_key :accounts, column: :account_id
@@ -104,8 +112,20 @@
       t.foreign_key :oauth_applications, column: :oauth_application_id
       t.string :code, null: false, index: { unique: true }
       t.string :params, null: false
       t.datetime :expires_in, null: false
       t.index %i[oauth_application_id code], unique: true
+    end
+
+    create_table :oauth_saml_settings do |t|
+      t.bigint :oauth_application_id
+      t.foreign_key :oauth_applications, column: :oauth_application_id
+      t.text :idp_cert, null: true
+      t.text :idp_cert_fingerprint, null: true
+      t.string :idp_cert_fingerprint_algorithm, null: true
+      t.boolean :check_idp_cert_expiration, null: true
+      t.text :name_identifier_format, null: true
+      t.string :audience, null: true
+      t.string :issuer, null: false, unique: true
     end
   end
 end