devstack/authorizer
4
0
Fork 0
Code Pull Requests Actions Activity

fix: Uses whitespace as seperator for oauth scopes in state-string

Browse Source 
This is necessary, as the previous delimiter (,) was being redacted
after a redirect. This resulted in the scopes not being correctly
parseable and the state not being fetched correctly after the
oauth-callback
This commit is contained in:
szczepad 2022-08-22 09:19:09 +02:00
parent 34ce754ef6
commit aa232de426
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
server/handlers/oauth_login.go
View File

@ -95,7 +95,7 @@ func OAuthLoginHandler() gin.HandlerFunc {
} }
oauthStateString := state + "___" + redirectURI + "___" + roles + "___" + strings.Join(scope, ",") oauthStateString := state + "___" + redirectURI + "___" + roles + "___" + strings.Join(scope, " ")
provider := c.Param("oauth_provider") provider := c.Param("oauth_provider")
isProviderConfigured := true isProviderConfigured := true