Theaninova/openstapps
1
0
Fork 0
mirror of https://gitlab.com/openstapps/openstapps.git synced 2026-01-03 12:02:53 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

feat: turn on oauth2 state check for PAIA

Browse Source 
Closes #172
This commit is contained in:
Jovan Krunić
2022-01-25 20:53:25 +01:00
parent 72060cbed7
commit 5bd0b50816
1 changed files with 6 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

12
src/app/modules/auth/paia/authorization-request-handler.ts
View File

@@ -92,13 +92,12 @@ export class PAIAAuthorizationRequestHandler {
);
void this.removeItemsFromStorage(handle);
// const state: string | undefined = queryParams['state'];
const state: string | undefined = queryParameters['state'];
const error: string | undefined = queryParameters['error'];
// TODO: we need state from PAIA (we don't get state at the moment)
// if (state !== request.state) {
// throw new Error("State Does Not Match");
// }
if (state !== request.state) {
throw new Error('State Does Not Match');
}
return <PAIAAuthorizationRequestResponse>{
request: request, // request
@@ -212,6 +211,7 @@ export class PAIAAuthorizationRequestHandler {
const query = this.utils.stringify(requestMap);
const baseUrl = configuration.authorizationEndpoint;
return `${baseUrl}?${query}&grant_type=client_credentials`;
// required encoding (PAIA specific)
return `${baseUrl}?${encodeURIComponent(query)}`;
}
}