Socket
Socket
Sign inDemoInstall

oauth-pkce

Package Overview
Dependencies
0
Maintainers
1
Versions
6
Alerts
File Explorer

Advanced tools

Install Socket

Detect and block malicious and high-risk dependencies

Install

Comparing version 0.0.2-alpha.0 to 0.0.2

.gitignore

4

package.json
{
"name": "oauth-pkce",
"version": "0.0.2-alpha.0",
"version": "0.0.2",
"description": "OAUTH PKCE code_verifier and code_challenge generator",

@@ -68,3 +68,3 @@ "main": "./dist/index.js",

},
"gitHead": "05f77e268eef2e4053fcc0ead7835f49301a5e3e"
"gitHead": "bf02790db34419a57e3be30912e672ae65cae793"
}

@@ -59,3 +59,3 @@ # OAUTH PKCE code_verifier and code_challenge Generator for IE 11 and Modern Browsers

### Server code_verifier Verification
### Server Side code_verifier Verification

@@ -73,3 +73,3 @@ For node environment, use [crypto module](https://nodejs.org/api/crypto.html) natively from node.

code_challenge is a Base64URL encoded string ([RFC 4648](https://tools.ietf.org/html/rfc4648#section-5)). To verify the `code_verifier` you need to convert the base64 value of `crypto.createHash('sha256').update(code_verifier).digest('base64')` to a base64url encoded string.
code_challenge is a Base64URL encoded string ([RFC 4648](https://tools.ietf.org/html/rfc4648#section-5)). To verify the `code_verifier` you need to convert the base64 value of `crypto.createHash('sha256').update(code_verifier).digest('base64')` to a **base64url** encoded string.

@@ -76,0 +76,0 @@ _In `getPkce()`, base64url removes the pad characters "=" from code_challenge_

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc