oidc-client-ts

oidc-client-ts copied to clipboard

Hi, I've noticed a spam of token requests coming from a single IP. Here is the pattern: ``` 2023-07-24T03:15:58.035Z,POST https://api.c-rpg.eu/connect/token 200 SA.ME.I.P 2023-07-24T03:15:58.038Z,POST https://api.c-rpg.eu/connect/token 200 SA.ME.I.P 2023-07-24T03:16:05.720Z,POST https://api.c-rpg.eu/connect/token 499 SA.ME.I.P...

verdie-g

Based on the draft specification for [OAuth 2.1 (1.8. Compatibility with OAuth 2.0)](https://datatracker.ietf.org/doc/html/draft-ietf-oauth-v2-1-09#name-compatibility-with-oauth-20) the future of OAuth will no longer support both the Implicit flow and the Resource Owner Credentials...

theadell

Does this library support introspection endpoint?

3

Most of the OIDC providers support introspection_endpoint to manage users session. It seems like, this library is supporting check_session_iframe endpoint, and not introspection endpoint. will it work with OIDC providers...

Sameer259310

Support for Basic Auth Client Authentication with client_id Only

1

I'm currently using the oidc-client-ts library for implementing OAuth 2.0 authorization code flow with PKCE in a React frontend application. The VMWare CSP identity provider I'm working with requires the...

vmwhol

Error: IFrame removed from DOM during signinSilent

8

I have enabled `automaticSilentRenew` on my Angular app and I am able to renew my session without any issues. However I saw this error being logged on my console during...

MFredX

renewal event fail in inactive tab

4

most browsers will throttle tab activities to preserve resources and battery life on the user’s device. with that, if a user switch away from the tab, token refresh timer won't...

kyugoa

oidc-client-ts with apple provider

2

Does oidc-client-ts support login with apple? I have configured to use it with Apple but I get CORS error while invoking token endpoint.

philipmvp

`OidcClient.processSigninResponse` not working when `fetch` is not defined

3

We use this package for integration testing, where we use `playwright` to get a user token using the authorization code grant. We then pass the response to `OidcClient.processSigninResponse` on the...

paulius-valiunas

Allow passing a custom fetch implementation to circumvent CORS restrictions

5

Hi there, we are using this library (the low-level parts) for a Cordova app. As the app is hosted under the `ionic://` protocol on iOS, there are CORS issues with...

kryops

Does Silent Renewal Using iFrames Work with Modern Browsers?

3

I recently discovered that the silent renewal does not work in the application that I am maintaining in my new job. I had previously got this working in another application...

DBCoderAtLarge