We read every piece of feedback, and take your input very seriously.
To see all available qualifiers, see our documentation.
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
I'm not entirely sure if it's a bug in the interface or in the application code or part of functionality that I don't understand yet but here goes:
The nonce option in LoginOptions.authorizationParams interface is not used in auth_verification cookie. See also: https://github.com/auth0/express-openid-connect/blob/master/lib/context.js#L245-L258 and https://github.com/auth0/express-openid-connect/blob/master/lib/context.js#L286
nonce
LoginOptions.authorizationParams
If not used in the cookie, where is it for?
res.oidc.login({ authorizationParams: { nonce: 'test-nonce' }, });
No response
2.17.1
4.18.3
v21.7.3
The text was updated successfully, but these errors were encountered:
No branches or pull requests
Checklist
Description
I'm not entirely sure if it's a bug in the interface or in the application code or part of functionality that I don't understand yet but here goes:
The
nonce
option inLoginOptions.authorizationParams
interface is not used in auth_verification cookie. See also: https://github.com/auth0/express-openid-connect/blob/master/lib/context.js#L245-L258 and https://github.com/auth0/express-openid-connect/blob/master/lib/context.js#L286If not used in the cookie, where is it for?
Reproduction
Additional context
No response
express-openid-connect version
2.17.1
Express version
4.18.3
Node.js version
v21.7.3
The text was updated successfully, but these errors were encountered: