You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
If a client has set a client_secret in their ClientConfig object, when getAuthorizerUrl() builds the authorization URL from clientConfig->getParams(), the client_secret is added to the parameter list. This exposes the client_secret to users of the client when they are sent to an OAuth2 authorization endpoint. The client_secret should only be added to a request to an OAuth2 token endpoint.
If a client has set a client_secret in their
ClientConfigobject, whengetAuthorizerUrl()builds the authorization URL fromclientConfig->getParams(), the client_secret is added to the parameter list. This exposes the client_secret to users of the client when they are sent to an OAuth2 authorization endpoint. The client_secret should only be added to a request to an OAuth2 token endpoint.oauth2-client-php/src/EasyBib/OAuth2/Client/AuthorizationCodeGrant/AuthorizationCodeSession.php
Lines 69 to 74 in e3cc805
The text was updated successfully, but these errors were encountered: