Huge News!Announcing our $40M Series B led by Abstract Ventures.Learn More
Socket
Sign inDemoInstall
Socket

oidc-provider

Package Overview
Dependencies
Maintainers
1
Versions
339
Alerts
File Explorer

Advanced tools

Socket logo

Install Socket

Detect and block malicious and high-risk dependencies

Install

oidc-provider - npm Package Compare versions

Comparing version 0.10.0 to 0.10.1

2

CHANGELOG.md
Following semver, 1.0.0 will mark the first API stable release and commence of this file,
until then please use the compare views of github for reference.
- https://github.com/panva/node-oidc-provider/compare/v0.10.0...0.10.1
- fix: push nonce from code to refresh token and then id_token upon refresh
- https://github.com/panva/node-oidc-provider/compare/v0.9.0...v0.10.0

@@ -5,0 +7,0 @@ - added: custom discovery property config

3

lib/actions/token/authorization_code.js

@@ -66,2 +66,3 @@ 'use strict';

grantId: code.grantId,
nonce: code.nonce,
scope: code.scope,

@@ -82,4 +83,4 @@ });

token.set('nonce', code.nonce);
token.set('at_hash', accessToken);
token.set('nonce', code.nonce);
token.set('rt_hash', refreshToken);

@@ -86,0 +87,0 @@

@@ -67,2 +67,3 @@ 'use strict';

token.set('nonce', refreshToken.nonce);
token.set('at_hash', accessToken);

@@ -69,0 +70,0 @@ token.set('rt_hash', this.oidc.params.refresh_token);

@@ -60,3 +60,3 @@ {

},
"version": "0.10.0",
"version": "0.10.1",
"files": [

@@ -63,0 +63,0 @@ "lib"

SocketSocket SOC 2 Logo

Product

  • Package Alerts
  • Integrations
  • Docs
  • Pricing
  • FAQ
  • Roadmap
  • Changelog

Packages

npm

Stay in touch

Get open source security insights delivered straight into your inbox.


  • Terms
  • Privacy
  • Security

Made with ⚡️ by Socket Inc