openid-client
Advanced tools
Comparing version 5.1.1 to 5.1.2
@@ -40,2 +40,4 @@ const { inspect } = require('util'); | ||
const retryAttempt = Symbol(); | ||
const skipNonceCheck = Symbol(); | ||
const skipMaxAgeCheck = Symbol(); | ||
@@ -766,3 +768,3 @@ function pickCb(input) { | ||
if (maxAge || (maxAge !== null && this.require_auth_time)) { | ||
if (typeof maxAge === 'number' || (maxAge !== skipMaxAgeCheck && this.require_auth_time)) { | ||
if (!payload.auth_time) { | ||
@@ -782,3 +784,3 @@ throw new RPError({ | ||
if (maxAge && payload.auth_time + maxAge < timestamp - this[CLOCK_TOLERANCE]) { | ||
if (typeof maxAge === 'number' && payload.auth_time + maxAge < timestamp - this[CLOCK_TOLERANCE]) { | ||
throw new RPError({ | ||
@@ -798,3 +800,3 @@ printf: [ | ||
if (nonce !== null && (payload.nonce || nonce !== undefined) && payload.nonce !== nonce) { | ||
if (nonce !== skipNonceCheck && (payload.nonce || nonce !== undefined) && payload.nonce !== nonce) { | ||
throw new RPError({ | ||
@@ -1097,3 +1099,3 @@ printf: ['nonce mismatch, expected %s, got: %s', nonce, payload.nonce], | ||
await this.decryptIdToken(tokenset); | ||
await this.validateIdToken(tokenset, null, 'token', null); | ||
await this.validateIdToken(tokenset, skipNonceCheck, 'token', skipMaxAgeCheck); | ||
@@ -1100,0 +1102,0 @@ if (refreshToken instanceof TokenSet && refreshToken.id_token) { |
{ | ||
"name": "openid-client", | ||
"version": "5.1.1", | ||
"version": "5.1.2", | ||
"description": "OpenID Connect Relying Party (RP, Client) implementation for Node.js runtime, supports passportjs", | ||
@@ -5,0 +5,0 @@ "keywords": [ |
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
License Policy Violation
LicenseThis package is not allowed per your license policy. Review the package's license to ensure compliance.
Found 1 instance in 1 package
133467
3657