Increase detail of state token errors
Before: a missing state error could be returned for 3 reasons: a token was not provided, the token provided was invalid, or the token provided had expired. There was no way of knowing which of these was the cause of any single missing state error. Now: if no token is provided, a missing state error is returned, and the "openid-connect-generic-no-state-provided" action is called. If the token provided is invalid, an "Invalid state" error is thrown and the "openid-connect-generic-state-not-found" action is called. If the token provided has expired, an "Invalid state" error is returned and the "openid-connect-generic-state-expired" action is called. This should allow for more granular error logging around state token errors.isekai
parent
43badcc569
commit
836500a495
Loading…
Reference in New Issue