Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat(sso): generate and verify OAuth state with go-cache #7527

Merged
merged 1 commit into from
Nov 21, 2024

Conversation

Mmx233
Copy link
Contributor

@Mmx233 Mmx233 commented Nov 20, 2024

Using TOTP to control state values can cause nearly random login failures. I was shocked when I discovered it was implemented using TOTP codes. It's like a random bomb.

Test Image: mmx233/alist:v3.39.4-beta1 mmx233/alist:v3.39.4-beta1-ffmpeg

@xhofe xhofe merged commit 398c043 into AlistGo:main Nov 21, 2024
3 checks passed
long2005a1 added a commit to long2005a1/Long-Cloud that referenced this pull request Nov 25, 2024
@Mmx233 Mmx233 deleted the fix/sso-state branch December 10, 2024 06:02
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

2 participants