whs-authz-authn/oauth-backend
1
0
Fork 0
mirror of https://github.com/j93es/oauth-backend.git synced 2026-06-04 09:51:52 +09:00
Code Issues Projects Releases Packages Wiki Activity

client_secret 검증(query,body,header)

Browse source
This commit is contained in:
tk 2025-06-09 21:37:34 +09:00
commit cba2d545b6
2 changed files with 77 additions and 1 deletions
Download patch file Download diff file Expand all files Collapse all files

14
addon/init.py
View file

@ -4,6 +4,7 @@ from pkce_check import PKCEDowngradeChecker
from ScopeDetection import ScopeDetection
from csrf_check import CsrfChecker
from nonce_check import NonceChecker
from cleintsecret_check import ClientSecretChecker
class PKCEAddon:
def __init__(self):
@ -60,5 +61,16 @@ class NonceAddon:
except Exception as e:
print(f"[ERROR] NonceAddon failed: {e}")
pass
class ClientSecretAddon:
def __init__(self):
self.checker = ClientSecretChecker()
addons = [PKCEAddon(), ScopeAddon(), CsrfAddon(), NonceAddon()]
async def request(self, flow: http.HTTPFlow):
try:
self.checker.response(flow)
except Exception as e:
print(f"[ERROR] ClientSecretAddon failed: {e}")
pass
addons = [PKCEAddon(), ScopeAddon(), CsrfAddon(), NonceAddon(), ClientSecretAddon()]