OIDC nonce validation - Githubissues

AzureAD / microsoft-authentication-library-for-python

Microsoft Authentication Library (MSAL) for Python makes it easy to authenticate to Microsoft Entra ID. General docs are available here https://learn.microsoft.com/entra/msal/python/ Stable APIs are documented here https://msal-python.readthedocs.io. Questions can be asked on www.stackoverflow.com with tag "msal" + "python".

https://stackoverflow.com/questions/tagged/azure-ad-msal+python

Other

757 stars 192 forks source link

OIDC nonce validation #518

Closed encetamasb closed 1 year ago

encetamasb commented 1 year ago

Hi!

Shouldn't nonce (if exists) be passed as arg to decode_id_token here?

https://github.com/AzureAD/microsoft-authentication-library-for-python/blob/dev/msal/oauth2cli/oidc.py#L118

Thanks!

encetamasb commented 1 year ago

Now I can see it's checked explicitly at a higher level. Closing issue.