trustchain-oc1-orchestral
/
authentik
Archived
10
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

providers/oauth2: fix missing nonce in token endpoint not being saved (#8073) 

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
This commit is contained in:
Jens L 2024-01-05 19:03:15 +01:00 committed by GitHub
parent c8b35b9b21
commit c77ea41af0
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
authentik/providers/oauth2/views/token.py
View File

@ -490,12 +490,13 @@ class TokenView(View):
auth_time=self.params.authorization_code.auth_time, auth_time=self.params.authorization_code.auth_time,
session_id=self.params.authorization_code.session_id, session_id=self.params.authorization_code.session_id,
) )
access_token.id_token = IDToken.new( access_id_token = IDToken.new(
self.provider, self.provider,
access_token, access_token,
self.request, self.request,
) )
access_token.id_token.nonce = self.params.authorization_code.nonce access_id_token.nonce = self.params.authorization_code.nonce
access_token.id_token = access_id_token
access_token.save() access_token.save()
response = { response = {