Error message for 'sub' mismatch is incorrect after redeeming 'code' #194

brentschmaltz · 2016-09-08T15:13:18Z

When the 'sub' doesn't match the error message reports the 'iss' claim is mismatched.

if (subFromPrevIdToken && subFromPrevIdToken !== jwtClaims.sub)
return self.fail('After redeeming the code, iss in id_token from authorize_endpoint does not match iss in id_token from token_endpoint');

(1) Rewrote the metadata loading and the configuration code. Restructured OIDCStrategy. (2) #188 B2C mocha tests (partially done, waiting for the AAD fix of missing nonce to add test for hybrid/code flow) (3) #165 rename 'callbackURL' and 'returnURL' to 'redirectUrl'. (4) #189 Extensibility to allow issuer validation when going against commend end point (5) #194 error message for 'sub' mismatch is incorrect after redeeming 'code' (6) #218 missing email claim for B2C

brentschmaltz changed the title ~~Error message is for 'sub' mismatch is incorrect after redeeming 'code'~~ Error message for 'sub' mismatch is incorrect after redeeming 'code' Sep 8, 2016

lovemaths added this to the 3.0.0 milestone Sep 9, 2016

lovemaths self-assigned this Sep 9, 2016

lovemaths added the P1 label Sep 9, 2016

lovemaths mentioned this issue Sep 27, 2016

Fix OIDC B2C problems #220

Merged

polita added the done label Sep 27, 2016

lovemaths closed this as completed Oct 13, 2016

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Error message for 'sub' mismatch is incorrect after redeeming 'code' #194

Error message for 'sub' mismatch is incorrect after redeeming 'code' #194

brentschmaltz commented Sep 8, 2016

Error message for 'sub' mismatch is incorrect after redeeming 'code' #194

Error message for 'sub' mismatch is incorrect after redeeming 'code' #194

Comments

brentschmaltz commented Sep 8, 2016