hedgedoc

mirror of https://github.com/hedgedoc/hedgedoc.git synced 2024-09-21 00:18:49 -04:00

History

Dexter Chua a88b4aff2a Generic OAuth2: Set state: true The OAuth2 specification RECOMMENDS setting the state to protect against CSRF attacks. Some OAuth2 providers (e.g. ORY Hydra) refuse to authenticate without the state set. This is a cherry-pick of `852868419d`. Signed-off-by: haslersn <sebastian.hasler@gmx.net>	2020-10-22 22:50:34 +02:00
..
index.js	Generic OAuth2: Set state: true	2020-10-22 22:50:34 +02:00

Dexter Chua a88b4aff2a Generic OAuth2: Set state: true

The OAuth2 specification RECOMMENDS setting the state to protect against
CSRF attacks. Some OAuth2 providers (e.g. ORY Hydra) refuse to
authenticate without the state set.

This is a cherry-pick of 852868419d.

Signed-off-by: haslersn <sebastian.hasler@gmx.net>

2020-10-22 22:50:34 +02:00

index.js Generic OAuth2: Set state: true 2020-10-22 22:50:34 +02:00