cim/zitadel-oidc
5
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

fix: add state in access token response (implicit flow)

Browse source
This commit is contained in:
Livio Amstutz 2022-06-17 09:33:30 +02:00
parent bb4d854efe
commit f345ddd0c5
No known key found for this signature in database
GPG key ID: 26BB1C2FA5952CF0
2 changed files with 4 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

3
pkg/op/token.go
View file

@ -35,11 +35,13 @@ func CreateTokenResponse(ctx context.Context, request IDTokenRequest, client Cli
return nil, err
}
var state string
if authRequest, ok := request.(AuthRequest); ok {
err = creator.Storage().DeleteAuthRequest(ctx, authRequest.GetID())
if err != nil {
return nil, err
}
state = authRequest.GetState()
}
exp := uint64(validity.Seconds())
@ -49,6 +51,7 @@ func CreateTokenResponse(ctx context.Context, request IDTokenRequest, client Cli
RefreshToken: newRefreshToken,
TokenType: oidc.BearerToken,
ExpiresIn: exp,
State: state,
}, nil
}