offline_access 기본 강제 제거 및 refresh_token grant 정책 정리

2026-06-12 16:01:24 +09:00
parent e41a2162da
commit 568dc258e7
8 changed files with 20 additions and 38 deletions
--- a/devfront/src/features/clients/ClientGeneralPage.claims.test.tsx
+++ b/devfront/src/features/clients/ClientGeneralPage.claims.test.tsx
@@ -409,7 +409,7 @@ describe("ClientGeneralPage RP claims", () => {
    );
  });

-  it("shows supported scopes including offline_access and custom claims from the add scope button", async () => {
+  it("shows supported scopes and custom claims without integrated offline_access from the add scope button", async () => {
    const { container } = await renderPage();

    const addScopeButton = Array.from(
@@ -422,7 +422,7 @@ describe("ClientGeneralPage RP claims", () => {
    });
    await flush();

-    expect(container.textContent).toContain("offline_access");
+    expect(container.textContent).not.toContain("offline_access");
    expect(container.textContent).toContain("old_claim");

    const customClaimButton = Array.from(
--- a/devfront/src/features/clients/ClientGeneralPage.tsx
+++ b/devfront/src/features/clients/ClientGeneralPage.tsx
@@ -659,15 +659,6 @@ function ClientGeneralPage() {
      description: t("msg.dev.clients.scopes.email", "이메일 주소 접근"),
      mandatory: false,
    },
-    {
-      id: "5",
-      name: "offline_access",
-      description: t(
-        "msg.dev.clients.scopes.offline_access",
-        "refresh token 발급 요청",
-      ),
-      mandatory: false,
-    },
  ]);
  const [idTokenClaims, setIdTokenClaims] = useState<IdTokenClaimItem[]>([]);
  const browserTimeZone = useMemo(() => getBrowserTimeZone(), []);
@@ -768,15 +759,6 @@ function ClientGeneralPage() {
        description: tenantScopeDescription,
        source: "standard",
      },
-      {
-        id: "standard-offline-access",
-        name: "offline_access",
-        description: t(
-          "msg.dev.clients.scopes.offline_access",
-          "refresh token 발급 요청",
-        ),
-        source: "standard",
-      },
    ],
    [tenantScopeDescription],
  );
--- a/devfront/tests/devfront-client-claims-cache.spec.ts
+++ b/devfront/tests/devfront-client-claims-cache.spec.ts
@@ -99,7 +99,7 @@ test.describe("DevFront RP claim cache", () => {
    await expect(claimKeyInput).toHaveValue("new_claim");
  });

-  test("adds supported scopes and custom claim keys from the scope picker including offline_access", async ({
+  test("adds supported scopes and custom claim keys from the scope picker without offline_access", async ({
    page,
  }) => {
    const state = {
@@ -142,9 +142,9 @@ test.describe("DevFront RP claim cache", () => {
      .getByRole("button", { name: /스코프 추가|Scope 추가|Add Scope/i })
      .click();

-    await expect(
-      page.getByText("offline_access", { exact: true }),
-    ).toBeVisible();
+    await expect(page.getByText("offline_access", { exact: true })).toHaveCount(
+      0,
+    );
    await expect(
      page.getByRole("button", { name: /employee_code/ }),
    ).toBeVisible();