groove/audiobookshelf
1
0
Fork 0
mirror of https://github.com/advplyr/audiobookshelf.git synced 2026-03-01 05:29:41 +00:00
Code Issues Projects Releases Packages Wiki Activity Actions 5
audiobookshelf/server/auth
History
Denis Arnst a6848065e1
OIDC: Skip nonce for mobile flow to fix app login 
Some IdPs (e.g. Authentik) don't echo the nonce in the id_token for
the authorization code flow, causing "nonce mismatch, got: undefined"
errors when the mobile app attempts SSO login. The mobile flow already
uses PKCE which provides equivalent replay protection, so nonce is not
needed. Web flow continues to use nonce for defense-in-depth.
2026-02-13 12:35:03 +01:00
..
AuthError.js Revamp OIDC auth: remove Passport wrapper, add schema-driven settings UI 2026-02-05 17:54:59 +01:00
BackchannelLogoutHandler.js Add OIDC Back-Channel Logout support 2026-02-05 17:55:10 +01:00
LocalAuthStrategy.js Seperate out auth strategies, update change password to return error status codes 2025-07-07 15:04:40 -05:00
OidcAuthStrategy.js OIDC: Skip nonce for mobile flow to fix app login 2026-02-13 12:35:03 +01:00
OidcSettingsSchema.js OIDC: Fix CodeQL warnings 2026-02-05 20:31:07 +01:00
TokenManager.js Add OIDC Back-Channel Logout support 2026-02-05 17:55:10 +01:00