Skip to content
Permalink
Browse files Browse the repository at this point in the history
fix(pac4j-oidc): add verifier parameter (#6835)
* fix(pac4j-oidc): add verifier parameter
  • Loading branch information
david-leifker committed Dec 22, 2022
1 parent 517688d commit 2a182f4
Showing 1 changed file with 4 additions and 1 deletion.
Expand Up @@ -15,6 +15,7 @@
import com.nimbusds.oauth2.sdk.http.HTTPRequest;
import com.nimbusds.oauth2.sdk.http.HTTPResponse;
import com.nimbusds.oauth2.sdk.id.ClientID;
import com.nimbusds.oauth2.sdk.pkce.CodeVerifier;
import com.nimbusds.openid.connect.sdk.OIDCTokenResponse;
import com.nimbusds.openid.connect.sdk.OIDCTokenResponseParser;
import com.nimbusds.openid.connect.sdk.token.OIDCTokens;
Expand Down Expand Up @@ -144,8 +145,10 @@ public void validate(final OidcCredentials credentials, final WebContext context
if (code != null) {
try {
final String computedCallbackUrl = client.computeFinalCallbackUrl(context);
CodeVerifier verifier = (CodeVerifier) configuration.getValueRetriever()
.retrieve(client.getCodeVerifierSessionAttributeName(), client, context).orElse(null);
// Token request
final TokenRequest request = createTokenRequest(new AuthorizationCodeGrant(code, new URI(computedCallbackUrl)));
final TokenRequest request = createTokenRequest(new AuthorizationCodeGrant(code, new URI(computedCallbackUrl), verifier));
HTTPRequest tokenHttpRequest = request.toHTTPRequest();
tokenHttpRequest.setConnectTimeout(configuration.getConnectTimeout());
tokenHttpRequest.setReadTimeout(configuration.getReadTimeout());
Expand Down

0 comments on commit 2a182f4

Please sign in to comment.