cim/zitadel-oidc
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: Handle case where verifier Nonce func is nil (#594)

Browse source 
* Skip nonce check if verifier nonce func is nil

* add unit test
This commit is contained in:
Yuval Marcus 2024-05-02 03:46:12 -04:00 committed by GitHub
parent 37ca0e472a
commit 24d43f538e
No known key found for this signature in database
GPG key ID: B5690EEEBB952194
2 changed files with 38 additions and 28 deletions
Download patch file Download diff file Expand all files Collapse all files

6
pkg/client/rp/verifier.go
View file

@ -73,8 +73,10 @@ func VerifyIDToken[C oidc.Claims](ctx context.Context, token string, v *IDTokenV
return nilClaims, err
}
if err = oidc.CheckNonce(claims, v.Nonce(ctx)); err != nil {
return nilClaims, err
if v.Nonce != nil {
if err = oidc.CheckNonce(claims, v.Nonce(ctx)); err != nil {
return nilClaims, err
}
}
if err = oidc.CheckAuthorizationContextClassReference(claims, v.ACR); err != nil {