angular-auth-oidc-client [Question]: Is it possible to not validate the `code` parameters when requesting `authorize` (authorization endpoint) from the API?

[Question]: Is it possible to not validate the `code` parameters when requesting `authorize` (authorization endpoint) from the API?

Open danielalmeidagoncalves opened this issue 8 months ago • 0 comments

What Version of the library are you using? 17.0.0

Question Is it possible not to validate the code parameter from a response given by the authorize endpoint of a identity provider? On our use case our identity and authorization provider requires to call /authorize in order to perform silent authentication (auto login) on our products. The thing is that after getting the response for the IdP we are presented with a console error stating:

Error: no code in url

This is because on the response url, our IdP only returns

Location: https://your_apps/DESTINATION?error=login_required&state=xyzABC123

That has only the state parameters and has no code parameter. This library actually validates that and throws a console error.

How can we avoid such scenario? Did anyone had this use case?

Jun 11 '24 14:06 danielalmeidagoncalves

angular-auth-oidc-client angular-auth-oidc-client copied to clipboard

[Question]: Is it possible to not validate the `code` parameters when requesting `authorize` (authorization endpoint) from the API?

angular-auth-oidc-client
angular-auth-oidc-client copied to clipboard