OIDC: Return error if multiple client auth used (#2474)
This commit is contained in:
parent
165f8cf313
commit
2d7f9e34a6
|
@ -1374,6 +1374,12 @@ sub getEndPointAuthenticationCredentials {
|
||||||
split( /:/, decode_base64($1) );
|
split( /:/, decode_base64($1) );
|
||||||
};
|
};
|
||||||
$self->logger->error("Bad authentication header: $@") if ($@);
|
$self->logger->error("Bad authentication header: $@") if ($@);
|
||||||
|
|
||||||
|
# Using multiple methods is an error
|
||||||
|
if ($req->param('client_id')) {
|
||||||
|
$self->logger->error("Multiple client authentication methods used");
|
||||||
|
( $client_id, $client_secret ) = (undef, undef);
|
||||||
|
}
|
||||||
}
|
}
|
||||||
elsif ( $req->param('client_id') and $req->param('client_secret') ) {
|
elsif ( $req->param('client_id') and $req->param('client_secret') ) {
|
||||||
$self->logger->debug("Method client_secret_post used");
|
$self->logger->debug("Method client_secret_post used");
|
||||||
|
|
Loading…
Reference in New Issue
Block a user