upstream/nextcloud
1
0
Fork 0
mirror of https://github.com/nextcloud/server.git synced 2026-02-03 20:41:22 -05:00
Code Issues Projects Releases Packages Wiki Activity Actions 33

fix(oauth2): Limit allowed grant_type values in getToken

Browse source 
Signed-off-by: provokateurin <kate@provokateurin.de>
This commit is contained in:
provokateurin 2025-08-25 13:40:35 +02:00
parent 32f5f6e08e
commit 1b4722c330
No known key found for this signature in database
3 changed files with 9 additions and 1 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
apps/oauth2/lib/Controller/OauthApiController.php
View file

@ -54,7 +54,7 @@ class OauthApiController extends Controller {
/**
* Get a token
*
* @param string $grant_type Token type that should be granted
* @param 'authorization_code'|'refresh_token' $grant_type Token type that should be granted
* @param ?string $code Code of the flow
* @param ?string $refresh_token Refresh token
* @param ?string $client_id Client ID

4
apps/oauth2/openapi.json
View file

@ -128,6 +128,10 @@
"properties": {
"grant_type": {
"type": "string",
"enum": [
"authorization_code",
"refresh_token"
],
"description": "Token type that should be granted"
},
"code": {

4
openapi.json
View file

@ -22834,6 +22834,10 @@
"properties": {
"grant_type": {
"type": "string",
"enum": [
"authorization_code",
"refresh_token"
],
"description": "Token type that should be granted"
},
"code": {