feat(auth): add OIDC state parameter

Signed-off-by: Ivan Li <ivanli2048@gmail.com>
2025-05-19 17:55:17 -04:00 · 2024-10-14 13:12:30 +08:00 · 2024-10-14 13:12:30 +08:00 · 19f4baf79b
commit 19f4baf79b
parent 8b6bedab39
3 changed files with 26 additions and 1 deletions
--- a/backend/src/api/private/auth/oidc/oidc.controller.ts
+++ b/backend/src/api/private/auth/oidc/oidc.controller.ts
@ -41,12 +41,15 @@ export class OidcController {
    @Param('oidcIdentifier') oidcIdentifier: string,
  ): { url: string } {
    const code = this.oidcService.generateCode();
+    const state = this.oidcService.generateState();
    request.session.oidcLoginCode = code;
+    request.session.oidcLoginState = state;
    request.session.authProviderType = ProviderType.OIDC;
    request.session.authProviderIdentifier = oidcIdentifier;
    const authorizationUrl = this.oidcService.getAuthorizationUrl(
      oidcIdentifier,
      code,
+      state,
    );
    return { url: authorizationUrl };
  }