kotlin-multiplatform-oidc icon indicating copy to clipboard operation
kotlin-multiplatform-oidc copied to clipboard

Published 20 hours ago verified publisher icon kalinjul

nouce validation should be optional

Open heddxh opened this issue 6 months ago • 0 comments

The commit 46ce25a2c77c8c8a44dfd58688dc5d88d4809ea6 introduced mandatory nonce validation in code auth flow. But in fact nonce is optional according to the spec. Some server/service will simply ignore the nonce in request, making the flow fail.

Can we have a configuration option here?

heddxh avatar May 15 '25 08:05 heddxh