openid: Issue ID Token on implicit code flow as well

compose/compose_openid.go

@@ -91,6 +91,7 @@ func OpenIDConnectHybridFactory(config *Config, storage interface{}, strategy in
 		IDTokenHandleHelper: &openid.IDTokenHandleHelper{
 			IDTokenStrategy: strategy.(openid.OpenIDConnectTokenStrategy),
 		},
+		OpenIDConnectRequestStorage: storage.(openid.OpenIDConnectRequestStorage),
 		OpenIDConnectRequestValidator: openid.NewOpenIDConnectRequestValidator(config.AllowedPromptValues, strategy.(jwt.JWTStrategy)),
 	}
 }

handler/openid/flow_hybrid.go

@@ -39,6 +39,7 @@ type OpenIDConnectHybridHandler struct {
 	IDTokenHandleHelper               *IDTokenHandleHelper
 	ScopeStrategy                     fosite.ScopeStrategy
 	OpenIDConnectRequestValidator     *OpenIDConnectRequestValidator
+	OpenIDConnectRequestStorage       OpenIDConnectRequestStorage
 
 	Enigma *jwt.RS256JWTStrategy
 }
@@ -103,6 +104,12 @@ func (c *OpenIDConnectHybridHandler) HandleAuthorizeEndpointRequest(ctx context.
 			return err
 		}
 		claims.CodeHash = base64.RawURLEncoding.EncodeToString([]byte(hash[:c.Enigma.GetSigningMethodLength()/2]))
+
+		if ar.GetGrantedScopes().Has("openid") {
+			if err := c.OpenIDConnectRequestStorage.CreateOpenIDConnectSession(ctx, resp.GetCode(), ar.Sanitize(oidcParameters)); err != nil {
+				return errors.WithStack(fosite.ErrServerError.WithDebug(err.Error()))
+			}
+		}
 	}
 
 	if ar.GetResponseTypes().Has("token") {

handler/openid/flow_hybrid_test.go

@@ -96,6 +96,7 @@ func TestHybrid_HandleAuthorizeEndpointRequest(t *testing.T) {
 		},
 		ScopeStrategy:                 fosite.HierarchicScopeStrategy,
 		OpenIDConnectRequestValidator: NewOpenIDConnectRequestValidator(nil, j.RS256JWTStrategy),
+		OpenIDConnectRequestStorage: storage.NewMemoryStore(),
 	}
 
 	for k, c := range []struct {