feat: sanitise client fields for resource_server app type (#1164)

feat(clients.ts): Sanitize client fields for resource_server app type
- src/tools/auth0/handlers/clients.ts: Add sanitizeClientFields function to remove specific fields from resource_server type
- src/tools/auth0/handlers/clients.ts: Apply sanitizeClientFields to changes before processing

Author: kushalshit27

src/tools/auth0/handlers/clients.ts

@@ -209,11 +209,29 @@ export default class ClientHandler extends DefaultAPIHandler {
       return list.filter((item) => item.client_id !== currentClient);
     };
 
+    // Sanitize client fields
+    const sanitizeClientFields = (list) =>
+      list.map((item) => {
+        // For resourceServers app type `resource_server`, don't include `oidc_backchannel_logout`, `oidc_logout`, `refresh_token`
+        if (item.app_type === 'resource_server') {
+          if ('oidc_backchannel_logout' in item) {
+            delete item.oidc_backchannel_logout;
+          }
+          if ('oidc_logout' in item) {
+            delete item.oidc_logout;
+          }
+          if ('refresh_token' in item) {
+            delete item.refresh_token;
+          }
+        }
+        return item;
+      });
+
     const changes = {
-      del: filterClients(del),
-      update: filterClients(update),
-      create: filterClients(create),
-      conflicts: filterClients(conflicts),
+      del: sanitizeClientFields(filterClients(del)),
+      update: sanitizeClientFields(filterClients(update)),
+      create: sanitizeClientFields(filterClients(create)),
+      conflicts: sanitizeClientFields(filterClients(conflicts)),
     };
 
     await super.processChanges(assets, {