Decoded access token uses id_token instead #15

New issue

Open

opened 2025-01-08 14:29:30 +00:00 by erefes · 0 comments

erefes commented 2025-01-08 14:29:30 +00:00 (Migrated from gitlab.com)

Copy link

The method to return the decoded access token uses the id_token instead of the access_token. This looks like a copy paste error.
See gitlab.com/kerkmann/leptos_oidc/-@26426dacb1 (b24749917179fb5e3e613ed2a703fcdcc6cdf9da_259_259)

At the moment all keys from the provider are tried when decoding the token. It may be worth checking if the key id in the token header uses one of the provided keys by the identity provider.

The method to return the decoded access token uses the `id_token` instead of the `access_token`. This looks like a copy paste error. See https://gitlab.com/kerkmann/leptos_oidc/-/commit/26426dacb1980eae32cc45b61dad5ab9f2d040d8#b24749917179fb5e3e613ed2a703fcdcc6cdf9da_259_259 At the moment all keys from the provider are tried when decoding the token. It may be worth checking if the key id in the token header uses one of the provided keys by the identity provider.

Sign in to join this conversation.

No Branch/Tag specified

Branches Tags

main

v0.7.0

v0.6.1

v0.6.0

v0.5.0

v0.4.1

v0.4.0

v0.3.0

v0.2.2

v0.2.1

v0.2.0

v0.1.1

v0.1.0

Labels

Clear labels   

WIP

No labels

WIP

Milestone

Clear milestone

No items

No milestone

Projects

Clear projects

No items

No project

Assignees

Clear assignees

No assignees

1 participant

Notifications

Subscribe

Due date

The due date is invalid or out of range. Please use the format "yyyy-mm-dd".

No due date set.

Dependencies

No dependencies set.

Reference

kerkmann/leptos_oidc#15

No description provided.