whs-authz-authn/oauth-backend
1
0
Fork 0
mirror of https://github.com/j93es/oauth-backend.git synced 2026-06-04 06:31:51 +09:00
Code Issues Projects Releases Packages Wiki Activity

[Update] client secret | google response type token | google login hint

Browse source
This commit is contained in:
tv0924@icloud.com 2025-07-12 12:08:03 +09:00
commit e2ee91034d
5 changed files with 88 additions and 3 deletions
Download patch file Download diff file Expand all files Collapse all files

6
addon/init.py
View file

@ -3,10 +3,11 @@ import asyncio
from pkce_check import PKCEDowngradeChecker
from addon.scope_detection import ScopeDetection
from csrf_check import CsrfChecker
from nonce_check import NonceChecker
from client_secret import ClientSecret
from redirect_uri_check import RedirectBypassChecker
from access_token import AccessTokenScanner
from addon.google_login_hint import GoogleLoginHint
from addon.google_response_type_token import GoogleResponseTypeToken
import os
from dotenv import load_dotenv
from lib.utils.try_catch import try_catch
@ -82,9 +83,10 @@ class AddonBase:
tasks = [
try_catch(CsrfChecker().response(flow)),
try_catch(ScopeDetection().test(flow)),
# try_catch(NonceChecker().check_nonce_in_request(flow)),
try_catch(ClientSecret().test(flow)),
try_catch(AccessTokenScanner().scan(flow)),
try_catch(RedirectBypassChecker().test(flow)),
try_catch(GoogleResponseTypeToken().test(flow)),
]
await asyncio.gather(*tasks)