oidc.rb in rodauth-oauth-0.8.0

- old
+ new

@@ -281,11 +281,11 @@
           oauth_grants_access_type_column => "online"
         ).count.zero?
           redirect_response_error("consent_required")
         end
       when "select-account"
-        # obly works if select_account plugin is available
+        # only works if select_account plugin is available
         require_select_account if respond_to?(:require_select_account)
       else
         redirect_response_error("invalid_request")
       end
     end
@@ -300,11 +300,11 @@
       return super unless oauth_grant[oauth_grants_nonce_column]
 
       super(oauth_grant, create_params.merge(oauth_tokens_nonce_column => oauth_grant[oauth_grants_nonce_column]))
     end
 
-    def create_oauth_token
+    def create_oauth_token(*)
       oauth_token = super
       generate_id_token(oauth_token)
       oauth_token
     end
 
@@ -459,10 +459,11 @@
       end
 
       scope_claims.unshift("auth_time") if last_account_login_at
 
       response_types_supported = metadata[:response_types_supported]
-      if use_oauth_implicit_grant_type?
+
+      if metadata[:grant_types_supported].include?("implicit")
         response_types_supported += ["none", "id_token", "code token", "code id_token", "id_token token", "code id_token token"]
       end
 
       metadata.merge(
         userinfo_endpoint: userinfo_url,