hailey.at
+1
-1
server/handle_oauth_par.go
+1
-1
server/handle_oauth_par.go
···
34
34
dpopProof, err := s.oauthProvider.DpopManager.CheckProof(e.Request().Method, "https://"+s.config.Hostname+e.Request().URL.String(), e.Request().Header, nil)
35
35
if err != nil {
36
36
if errors.Is(err, dpop.ErrUseDpopNonce) {
37
-
return e.JSON(401, map[string]string{
37
+
return e.JSON(400, map[string]string{
38
38
"error": "use_dpop_nonce",
39
39
})
40
40
}
+1
-1
server/handle_oauth_token.go
+1
-1
server/handle_oauth_token.go
···
47
47
proof, err := s.oauthProvider.DpopManager.CheckProof(e.Request().Method, e.Request().URL.String(), e.Request().Header, nil)
48
48
if err != nil {
49
49
if errors.Is(err, dpop.ErrUseDpopNonce) {
50
-
return e.JSON(401, map[string]string{
50
+
return e.JSON(400, map[string]string{
51
51
"error": "use_dpop_nonce",
52
52
})
53
53
}
+1
-1
server/middleware.go
+1
-1
server/middleware.go
···
232
232
proof, err := s.oauthProvider.DpopManager.CheckProof(e.Request().Method, "https://"+s.config.Hostname+e.Request().URL.String(), e.Request().Header, to.StringPtr(accessToken))
233
233
if err != nil {
234
234
if errors.Is(err, dpop.ErrUseDpopNonce) {
235
-
return e.JSON(401, map[string]string{
235
+
return e.JSON(400, map[string]string{
236
236
"error": "use_dpop_nonce",
237
237
})
238
238
}