Skip to content

Commit

Permalink
fix(endpoint-auth): validate client_id against local client.id
Browse files Browse the repository at this point in the history
  • Loading branch information
@paulrobertlloyd
paulrobertlloyd committed Aug 25, 2024
1 parent cab4fb1 commit ae9a209
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion packages/endpoint-auth/lib/middleware/code.js
View file
Original file line number Diff line number Diff line change
Expand Up @@ -38,7 +38,7 @@ export const codeValidator = (request, response, next) => {
}

// Validate `client_id` against that provided in authorization request
if (getCanonicalUrl(client_id) !== getCanonicalUrl(client.url)) {
if (getCanonicalUrl(client_id) !== getCanonicalUrl(client.id)) {
throw IndiekitError.unauthorized(
response.locals.__("BadRequestError.invalidValue", "client_id"),
);
Expand Down

0 comments on commit ae9a209

Please sign in to comment.