fix #4234: openid: adjust openid verification function for userinfo option

Signed-off-by: Thomas Skinner <thomas@atskinner.net>
[ML: rebased on master, added code to common and pve-rs forwarding]
Signed-off-by: Mira Limbeck <m.limbeck@proxmox.com>

common/src/oidc/mod.rs

@@ -54,9 +54,14 @@ pub mod export {
         #[try_from_ref] this: &OIDC,
         code: &str,
         private_auth_state: PrivateAuthState,
+        query_userinfo: Option<bool>,
     ) -> Result<Value, Error> {
         let oidc = this.inner.lock().unwrap();
-        let claims = oidc.verify_authorization_code_simple(code, &private_auth_state)?;
+        let claims = oidc.verify_authorization_code_simple_userinfo(
+            code,
+            &private_auth_state,
+            query_userinfo.unwrap_or(true),
+        )?;
 
         Ok(to_value(&claims)?)
     }

pve-rs/src/openid/mod.rs

@@ -41,7 +41,8 @@ mod export {
         #[try_from_ref] this: &OpenId,
         code: &str,
         private_auth_state: PrivateAuthState,
+        query_userinfo: Option<bool>,
     ) -> Result<Value, Error> {
-        common::verify_authorization_code(this, code, private_auth_state)
+        common::verify_authorization_code(this, code, private_auth_state, query_userinfo)
     }
 }