Closed pergardebrink closed 2 years ago
This is a proposed fix for #440 that only adds the nonce cookie when the RedirectToIdentityProvider is not handled
I expect this will break apps that are customizing the redirect but still need the cookie. I've made some alternate suggestions in the issue. Closing for now.
This is a proposed fix for #440 that only adds the nonce cookie when the RedirectToIdentityProvider is not handled