feat: delete PKCE cookie after code exchange (#419)
This commit is contained in:
Diego Parisi
GitHub
parent
48a5fdb8a6
commit
45582b6ee9
1 changed files with 1 additions and 0 deletions
|
|
@ -438,6 +438,7 @@ func CodeExchangeHandler[C oidc.IDClaims](callback CodeExchangeCallback[C], rp R
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
codeOpts = append(codeOpts, WithCodeVerifier(codeVerifier))
|
codeOpts = append(codeOpts, WithCodeVerifier(codeVerifier))
|
||||||
|
rp.CookieHandler().DeleteCookie(w, pkceCode)
|
||||||
}
|
}
|
||||||
if rp.Signer() != nil {
|
if rp.Signer() != nil {
|
||||||
assertion, err := client.SignedJWTProfileAssertion(rp.OAuthConfig().ClientID, []string{rp.Issuer()}, time.Hour, rp.Signer())
|
assertion, err := client.SignedJWTProfileAssertion(rp.OAuthConfig().ClientID, []string{rp.Issuer()}, time.Hour, rp.Signer())
|
||||||
|
|
|
||||||
Loading…
Add table
Add a link
Reference in a new issue