extern/bruno
1
0
Fork 1
mirror of https://github.com/usebruno/bruno.git synced 2024-11-22 07:53:34 +01:00
Code Issues Packages Projects Releases Wiki Activity

Don't include state in OAuth 2 exchange flow (#3034)

Browse Source 
* Don't include state in OAuth 2 exchange flow if not specified
* Remove state entirely
This commit is contained in:
Oleg Vaskevich 2024-09-06 02:48:31 -07:00 committed by GitHub
parent c85d7b0c77
commit 5d7f44fc61
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
1 changed files with 2 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
packages/bruno-electron/src/ipc/network/oauth2-helper.js
View File

@ -23,14 +23,13 @@ const resolveOAuth2AuthorizationCodeAccessToken = async (request, collectionUid)
let requestCopy = cloneDeep(request); let requestCopy = cloneDeep(request);
const { authorizationCode } = await getOAuth2AuthorizationCode(requestCopy, codeChallenge, collectionUid); const { authorizationCode } = await getOAuth2AuthorizationCode(requestCopy, codeChallenge, collectionUid);
const oAuth = get(requestCopy, 'oauth2', {}); const oAuth = get(requestCopy, 'oauth2', {});
const { clientId, clientSecret, callbackUrl, scope, state, pkce } = oAuth; const { clientId, clientSecret, callbackUrl, scope, pkce } = oAuth;
const data = { const data = {
grant_type: 'authorization_code', grant_type: 'authorization_code',
code: authorizationCode, code: authorizationCode,
redirect_uri: callbackUrl, redirect_uri: callbackUrl,
client_id: clientId, client_id: clientId,
client_secret: clientSecret, client_secret: clientSecret
state: state
}; };
if (pkce) { if (pkce) {
data['code_verifier'] = codeVerifier; data['code_verifier'] = codeVerifier;