kyy/swagger-ui
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

fix(auth): client_secret may appear in non-authcode flows while also using PKCE (#8146)

Browse Source
This commit is contained in:
Vladimir Slesarev
2022-08-10 20:28:37 +04:00
committed by GitHub
parent 46dece6f7b
commit c63737d574
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/core/components/auth/oauth2.jsx
View File

@@ -212,7 +212,7 @@ export default class Oauth2 extends React.Component {
} }
{ {
( (flow === AUTH_FLOW_APPLICATION || flow === AUTH_FLOW_ACCESS_CODE || flow === AUTH_FLOW_PASSWORD) && !isPkceCodeGrant && <Row> ( (flow === AUTH_FLOW_APPLICATION || flow === AUTH_FLOW_ACCESS_CODE && !isPkceCodeGrant || flow === AUTH_FLOW_PASSWORD) && <Row>
<label htmlFor="client_secret">client_secret:</label> <label htmlFor="client_secret">client_secret:</label>
{ {
isAuthorized ? <code> ****** </code> isAuthorized ? <code> ****** </code>