Don't include state in OAuth 2 exchange flow (usebruno#3034)

* Don't include state in OAuth 2 exchange flow if not specified * Remove state entirely
Its-treason · Sep 7, 2024 · 3e5ce1b · 3e5ce1b
1 parent d1a7eee
commit 3e5ce1b
Showing 1 changed file with 2 additions and 3 deletions.
diff --git a/packages/bruno-electron/src/ipc/network/oauth2-helper.js b/packages/bruno-electron/src/ipc/network/oauth2-helper.js
@@ -23,14 +23,13 @@ const resolveOAuth2AuthorizationCodeAccessToken = async (request, collectionUid)
   let requestCopy = cloneDeep(request);
   const { authorizationCode } = await getOAuth2AuthorizationCode(requestCopy, codeChallenge, collectionUid);
   const oAuth = get(requestCopy, 'oauth2', {});
-  const { clientId, clientSecret, callbackUrl, scope, state, pkce } = oAuth;
+  const { clientId, clientSecret, callbackUrl, scope, pkce } = oAuth;
   const data = {
     grant_type: 'authorization_code',
     code: authorizationCode,
     redirect_uri: callbackUrl,
     client_id: clientId,
-    client_secret: clientSecret,
-    state: state
+    client_secret: clientSecret
   };
   if (pkce) {
     data['code_verifier'] = codeVerifier;