k-space
/
wildflock
9
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Activity

fix(oidc): temporarily disable pkce
continuous-integration/drone/push Build is failing Details

This commit is contained in:
Erki Aas 2024-03-26 14:47:45 +02:00
parent 4d17c3bcff
commit ed9559efe5
2 changed files with 0 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
src/services/auth-oidc/auth-oidc.class.ts
View File

@ -33,18 +33,12 @@ export class AuthOidcService<ServiceParams extends AuthOidcParams = AuthOidcPara
id_token_signed_response_alg: config.get('oidc.signedResponseAlg'),
token_endpoint_auth_method: config.get('oidc.authMethod'),
});
const codeVerifier = generators.codeVerifier();
const codeChallenge = generators.codeChallenge(codeVerifier);
const url = client.authorizationUrl({
redirect_uri: config.get('clientUrl') + '/auth-oidc/callback',
scope: config.get('oidc.scopes'),
response_type: config.get('oidc.responseTypes'),
code_challenge: codeChallenge,
code_challenge_method: config.get('oidc.codeChallengeMethod'),
});
params.session.codeVerifier = codeVerifier;
return url;
}
}

2
src/services/auth-oidc/callback/auth-oidc-callback.class.ts
View File

@ -37,11 +37,9 @@ export class AuthOidcCallbackService<ServiceParams extends AuthOidcCallbackParam
response_types: ['code'],
});
const codeVerifier = params.session.codeVerifier;
const tokenSet = await client.callback(
config.get('clientUrl') + '/auth-oidc/callback',
{ code: params.query.code, iss: params.query.iss },
{ code_verifier: codeVerifier }
);
const userinfo = await client.userinfo(tokenSet.access_token as string);