Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Always validate auth code clients, even when public #1036

Open
wants to merge 1 commit into
base: master
Choose a base branch
from
Open

Always validate auth code clients, even when public #1036

wants to merge 1 commit into from

Commits on Jul 22, 2019

  1. Always validate auth code clients, even when public

    The validateClient method is called for public clients when using the
    refresh_token and password grant type and the interface allows passing
    a null secret, so it's not necessary to skip calling the method for the
    authorization_code grant type.
    matt-allan committed Jul 22, 2019
    Configuration menu
    Copy the full SHA
    46daf63 View commit details
    Browse the repository at this point in the history