Describe the bug
Error evaluating code regarding NEW_PASSWORD_REQUIRED challenge. I believe the issue is with src/Guards/CognitoTokenGuard.php in the hasValidCredentials function, in the scenario that goes through the default break statement for the challenge name, session_token is used as the key when creating a claim but in the login function in the same class, session is expected, not session_token ($this->claim['session']).
To Reproduce
Steps to reproduce the behavior:
Follow the guide (no optional change in .env)
Register a user
Login using that user
Error in the CognitoTokenGuard login function
Expected behavior
To get a response requiring to change the password (status = NEW_PASSWORD_REQUIRED and with the corresponding session key)
Desktop (please complete the following information):
Describe the bug Error evaluating code regarding
NEW_PASSWORD_REQUIRED
challenge. I believe the issue is withsrc/Guards/CognitoTokenGuard.php
in thehasValidCredentials
function, in the scenario that goes through the default break statement for the challenge name,session_token
is used as the key when creating a claim but in the login function in the same class,session
is expected, notsession_token
($this->claim['session']
).To Reproduce Steps to reproduce the behavior:
Expected behavior To get a response requiring to change the password (status =
NEW_PASSWORD_REQUIRED
and with the corresponding session key)Desktop (please complete the following information):