Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-10-31 19:15:58 +01:00
Code Issues Packages Projects Releases Wiki Activity

fix: accidental unnecessarily strict conditional that effectively rendered SSO state checking opt-in instead of opt-out

Browse Source
This commit is contained in:
Julian Lam
2021-06-14 14:13:31 -04:00
parent 520050da19
commit a2400f6baf
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
src/routes/authentication.js
View File

@@ -104,7 +104,7 @@ Auth.reloadRoutes = async function (params) {
prompt: strategy.prompt || undefined, prompt: strategy.prompt || undefined,
}; };
if (strategy.checkState) { if (strategy.checkState !== false) {
req.session.ssoState = req.csrfToken && req.csrfToken(); req.session.ssoState = req.csrfToken && req.csrfToken();
opts.state = req.session.ssoState; opts.state = req.session.ssoState;
} }