Skip to content

Commit

Permalink
Disallow GET on token endpoint
Browse files Browse the repository at this point in the history
 - Adjusted the code.
  • Loading branch information
rolandgroen committed Oct 13, 2023
1 parent f752f1e commit 87ce413
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion application/oauth_server/views.py
Original file line number Diff line number Diff line change
Expand Up @@ -135,7 +135,7 @@ def validate_redirect_uri(smart_service):
valid_redirects = list(map(lambda allowed_redirect: allowed_redirect.url, allowed_redirects))
assert False, f"redirect_uri [{redirect_uri}] not allowed. Configured values: {valid_redirects}"

@blueprint.route('/oauth2/token', methods=['POST', 'GET'])
@blueprint.route('/oauth2/token', methods=['POST'])
def handle_token_request():
jwt = _do_client_assertion()
if jwt:
Expand Down

0 comments on commit 87ce413

Please sign in to comment.