Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-22563

Do not store the "state" parameter in the Authorization Request

    XMLWordPrintable

    Details

    • Type: Task
    • Status: Resolved
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 9.2
    • Component/s: OAuth

      Description

      The state parameter is useful for the client to validate the request when the redirect is done, we do not need to store it in the Authorization Request and so in the Transient Store.

        Attachments

          Activity

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - Not Specified
                Not Specified
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 4 hours
                4h