Skip to content

sign oauth2 nonce with the hmac secret #384

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
phlax merged 1 commit into from
Dec 30, 2024
Merged

sign oauth2 nonce with the hmac secret #384

phlax merged 1 commit into from
Dec 30, 2024

Conversation

@zhaohuabing
Copy link
Member

@zhaohuabing zhaohuabing commented Dec 13, 2024

Update example for envoyproxy/envoy#37646

@zhaohuabing zhaohuabing force-pushed the oauth2-csrf-token-single-double-submit-cookie branch from 0edd8b8 to 679bd6a Compare December 16, 2024 04:41
@zhaohuabing

This comment was marked as outdated.

Sign in to view
@zhaohuabing zhaohuabing mentioned this pull request Dec 16, 2024
Merged
@zhaohuabing
sign oauth2 nonce with the hmac secret
c4a9e49 
rename nonce in state to csrf_token for clarity

Signed-off-by: Huabing Zhao <zhaohuabing@gmail.com>
@zhaohuabing zhaohuabing force-pushed the oauth2-csrf-token-single-double-submit-cookie branch from 679bd6a to c4a9e49 Compare December 18, 2024 02:31
phlax
phlax approved these changes Dec 30, 2024
View reviewed changes
Copy link
Member

@phlax phlax left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

lgtm, thanks @zhaohuabing

@phlax phlax merged commit b70aeaa into envoyproxy:main Dec 30, 2024
4 checks passed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@phlax phlax phlax approved these changes

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

2 participants

@zhaohuabing @phlax