From 6fc1c39b952d5dcd54f357c78da84c0df1cc2c43 Mon Sep 17 00:00:00 2001
From: zepatrik <zepatrik@users.noreply.github.com>
Date: Tue, 26 Nov 2024 09:46:04 +0100
Subject: [PATCH] chore: refactor to pass down client instead of context

---
 oidc/oidc.go   | 6 +++---
 oidc/verify.go | 2 +-
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/oidc/oidc.go b/oidc/oidc.go
index fe6113d..e5aaef7 100644
--- a/oidc/oidc.go
+++ b/oidc/oidc.go
@@ -116,7 +116,7 @@ type Provider struct {
 	commonRemoteKeySet KeySet
 }
 
-func (p *Provider) remoteKeySet(ctx context.Context) KeySet {
+func (p *Provider) remoteKeySet(c *http.Client) KeySet {
 	p.mu.RLock()
 	if p.commonRemoteKeySet != nil {
 		defer p.mu.RUnlock()
@@ -127,7 +127,7 @@ func (p *Provider) remoteKeySet(ctx context.Context) KeySet {
 	p.mu.Lock()
 	defer p.mu.Unlock()
 
-	p.commonRemoteKeySet = NewRemoteKeySet(ctx, p.jwksURL)
+	p.commonRemoteKeySet = NewRemoteKeySet(ClientContext(context.Background(), c), p.jwksURL)
 	return p.commonRemoteKeySet
 }
 
@@ -353,7 +353,7 @@ func (p *Provider) UserInfo(ctx context.Context, tokenSource oauth2.TokenSource)
 	ct := resp.Header.Get("Content-Type")
 	mediaType, _, parseErr := mime.ParseMediaType(ct)
 	if parseErr == nil && mediaType == "application/jwt" {
-		payload, err := p.remoteKeySet(ctx).VerifySignature(ctx, string(body))
+		payload, err := p.remoteKeySet(getClient(ctx)).VerifySignature(ctx, string(body))
 		if err != nil {
 			return nil, fmt.Errorf("oidc: invalid userinfo jwt signature %v", err)
 		}
diff --git a/oidc/verify.go b/oidc/verify.go
index 757bda1..9c97b23 100644
--- a/oidc/verify.go
+++ b/oidc/verify.go
@@ -131,7 +131,7 @@ func (p *Provider) VerifierContext(ctx context.Context, config *Config) *IDToken
 // The returned verifier uses a background context for all requests to the upstream
 // JWKs endpoint. To control that context, use VerifierContext instead.
 func (p *Provider) Verifier(config *Config) *IDTokenVerifier {
-	return p.newVerifier(p.remoteKeySet(ClientContext(context.Background(), p.client)), config)
+	return p.newVerifier(p.remoteKeySet(p.client), config)
 }
 
 func (p *Provider) newVerifier(keySet KeySet, config *Config) *IDTokenVerifier {