-
-
Aktuell funktioniert der OIDC Authorization Flow in der App nicht. Möglicherweise hängt es mit der von der App verwendenten [PKCE](https://doorkeeper.gitbook.io/guides/ruby-on-rails/pkce-flow) Erweite…
-
Token handler on PCKE flow is not verifying code_verifier and expecting client_secret.
Providing client_secret will defeat PKCE flow.
Please assist.
-
For the oauth flow the docs say that you need to set the public field to true to use PKCE. I think its the other way around? If you set it to "true" you don't get a client_secret, hence no PCKE?
![…
-
I configured the following and I get
```
[GET] "https://localhost:8080/.well-known/openid-configuration": fetch failed
```
```typescript
oidc: {
defaultProvider: 'zitadel',
provid…
-
with #740 PKCE was disabled by default. According to different sources PKCE is more secure and recommended for all sorts of clients:
https://datatracker.ietf.org/doc/html/draft-ietf-oauth-security-…
-
This library looks great, thanks. I am following the playground example.
I am using a Duende Identity Server OIDC provider and I have adapted the sample to make it work.
However I had to disable…
-
## Describe the bug
Trying to generate a PKCE-enabled Magic Link with `supabase.auth.admin.generateLink(...)` results in a implicit-flow link.
## To Reproduce
```ts
const email = "user@email…
-
**Problem description/clarification needed**
In the Identity and consent management (r0.20.0-rc2) CAMARA Security and Interoperability Profile,
https://github.com/camaraproject/IdentityAndConsentMa…
-
https://developer.spotify.com/documentation/web-api/tutorials/code-pkce-flow has details from the Spotify side.
Essentially we want something like the following:
```
In [118]: def test():
…