Revert "chore: fix broken security link on Readme (#8710 )"

This reverts commit a8985ab364.
chore: only validate bugs reports for repro links
2026-05-01 10:55:20 +00:00 · 2023-09-25 11:30:49 +02:00 · 2023-09-25 11:26:56 +02:00 · 2023-09-25 11:15:41 +02:00 · 2023-09-25 08:02:19 +07:00
5 changed files with 36 additions and 22 deletions
--- a/.github/ISSUE_TEMPLATE/1_bug_framework.yml
+++ b/.github/ISSUE_TEMPLATE/1_bug_framework.yml
@@ -1,6 +1,6 @@
 name: Bug report
 description: Report an issue so we can improve
-labels: [triage]
+labels: [triage, bug]
 body:
  - type: markdown
    attributes:
--- a/.github/ISSUE_TEMPLATE/2_bug_provider.yml
+++ b/.github/ISSUE_TEMPLATE/2_bug_provider.yml
@@ -1,6 +1,6 @@
 name: Bug report (Provider)
 description: Create a provider-specific report
-labels: [triage, providers]
+labels: [triage, bug, providers]
 body:
  - type: markdown
    attributes:
--- a/.github/ISSUE_TEMPLATE/3_bug_adapter.yml
+++ b/.github/ISSUE_TEMPLATE/3_bug_adapter.yml
@@ -1,6 +1,6 @@
 name: Bug report (Adapter)
 description: Create an adapter-specific report
-labels: [triage, adapters]
+labels: [triage, bug, adapters]
 body:
  - type: markdown
    attributes:
--- a/.github/workflows/triage.yml
+++ b/.github/workflows/triage.yml
@@ -14,10 +14,11 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: Nissuer
-        uses: balazsorban44/nissuer@1.3.5
+        uses: balazsorban44/nissuer@1.5.0
        with:
          label-area-prefix: ""
          label-area-section: "[Provider|Adapter] type(.*)### Environment"
          label-comments: '{ "incomplete": ".github/invalid-reproduction.md" }'
          reproduction-link-section: "### Reproduction URL(.*)### Describe the issue"
          reproduction-invalid-label: "invalid reproduction"
+          reproduction-issue-labels: "bug"
--- a/packages/core/src/providers/linkedin.ts
+++ b/packages/core/src/providers/linkedin.ts
@@ -8,17 +8,22 @@
 *
 * @module providers/linkedin
 */
-import type { OAuthConfig, OAuthUserConfig } from "./index.js"
+import type { OIDCConfig, OIDCUserConfig } from "./index.js"

-export interface LinkedInProfile {
-  sub: string
-  name: string
-  email: string
-  picture: string
+/** @see https://learn.microsoft.com/en-us/linkedin/consumer/integrations/self-serve/sign-in-with-linkedin-v2#response-body-schema */
+export interface LinkedInProfile extends Record<string, any> {
+  sub: string,
+  name: string,
+  given_name: string,
+  family_name: string,
+  picture: string,
+  locale: string,
+  email: string,
+  email_verified: boolean
 }

 /**
- * Add Linkedin login to your page.
+ * Add LinkedIn login to your page.
 *
 * ### Setup
 *
@@ -30,27 +35,27 @@ export interface LinkedInProfile {
 * #### Configuration
 *```js
 * import Auth from "@auth/core"
- * import Linkedin from "@auth/core/providers/linkedin"
+ * import LinkedIn from "@auth/core/providers/linkedin"
 *
 * const request = new Request(origin)
 * const response = await Auth(request, {
- *   providers: [Linkedin({ clientId: LINKEDIN_CLIENT_ID, clientSecret: LINKEDIN_CLIENT_SECRET })],
+ *   providers: [LinkedIn({ clientId: LINKEDIN_CLIENT_ID, clientSecret: LINKEDIN_CLIENT_SECRET })],
 * })
 * ```
 *
 * ### Resources
 *
- *  - [Linkedin OAuth documentation](https://docs.microsoft.com/en-us/linkedin/shared/authentication/authorization-code-flow)
- *  - [Linkedin app console](https://www.linkedin.com/developers/apps/)
+ *  - [LinkedIn OAuth documentation](https://docs.microsoft.com/en-us/linkedin/shared/authentication/authorization-code-flow)
+ *  - [LinkedIn app console](https://www.linkedin.com/developers/apps/)
 *
 * ### Notes
 *
- * By default, Auth.js assumes that the Linkedin provider is
- * based on the [OAuth 2](https://www.rfc-editor.org/rfc/rfc6749.html) specification.
+ * By default, Auth.js assumes that the LinkedIn provider is
+ * based on the [OIDC](https://openid.net/specs/openid-connect-core-1_0.html) specification.
 *
 * :::tip
 *
- * The Linkedin provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/linkedin.ts).
+ * The LinkedIn provider comes with a [default configuration](https://github.com/nextauthjs/next-auth/blob/main/packages/core/src/providers/linkedin.ts).
 * To override the defaults for your use case, check out [customizing a built-in OAuth provider](https://authjs.dev/guides/providers/custom-provider#override-default-options).
 *
 * :::
@@ -66,14 +71,22 @@ export interface LinkedInProfile {
 * :::
 */
 export default function LinkedIn<P extends LinkedInProfile>(
-  options: OAuthUserConfig<P>
-): OAuthConfig<P> {
+  options: OIDCUserConfig<P>
+): OIDCConfig<P> {
  return {
    id: "linkedin",
    name: "LinkedIn",
    type: "oidc",
-    client: {
-      token_endpoint_auth_method: "client_secret_post",
+    client: { token_endpoint_auth_method: "client_secret_post" },
+    issuer: "https://www.linkedin.com",
+    jwks_endpoint: "https://www.linkedin.com/oauth/openid/jwks",
+    async profile(profile) {
+      return {
+        id: profile.sub,
+        name: profile.name,
+        email: profile.email,
+        image: profile.picture
+      }
    },
    style: {
      logo: "/linkedin.svg",
Author	SHA1	Message	Date
Balázs Orbán	098f0a48ec	Revert "chore: fix broken security link on Readme (#8710 )" This reverts commit `a8985ab364`.	2023-09-25 11:30:49 +02:00
Balázs Orbán	46d02f750d	chore: only validate bugs reports for repro links	2023-09-25 11:26:56 +02:00
Trần Minh Quang	3fd0d04546	feat(providers): update LinkedIn to use OIDC (#8396 ) Co-authored-by: Balázs Orbán <info@balazsorban.com>	2023-09-25 11:15:41 +02:00
Muhammad Salman	a8985ab364	chore: fix broken security link on Readme (#8710 ) * fixed broken security link on npm docs * Update packages/next-auth/README.md --------- Co-authored-by: Thang Vu <hi@thvu.dev>	2023-09-25 08:02:19 +07:00