Commit 486cb41c authored by Jon Kåre Hellan's avatar Jon Kåre Hellan

Add nonce to auth request - required for oidc implicit

parent 88b5c1c7
Pipeline #14635 passed with stages
in 3 minutes and 31 seconds
......@@ -1185,7 +1185,9 @@ define('jso',['require','exports','module','./store','./utils','./Config'],funct
request.response_type = opts.response_type;
}
if (request.response_type.split(/\s+/).includes("id_token")) {
request.nonce = utils.uuid()
}
if (callback && typeof callback === 'function') {
utils.log("About to store a callback for later with state=" + request.state, callback);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment