JasSuri
commented
7 months ago There were security reasons which led to the authz code size to increase. It cannot be limited.
Open ramon-tomas-c opened 11 months ago
JasSuri
commented
7 months ago There were security reasons which led to the authz code size to increase. It cannot be limited.
The Azure B2C identity provider recently increased the length of their generated authorization codes, those codes are used as a query parameter for OIDC flows.
We currently have a SPA app hosted on Azure static web apps. This new changes cause the static web app to return a Not found resource exception when it is redirected during the auth flow as the query string length reached the maximum allowed by the static web app (4096).
Is there a way to limit the length of the generated auth codes?
Thanks.