lsm/openiddict-documentation
1
0
Fork 0
mirror of https://gitee.com/dcren/openiddict-documentation.git synced 2025-04-05 17:38:03 +08:00
Code Issues Actions Packages Projects Releases Wiki Activity

Update the PKCE documentation to indicate how to enable code_challenge_method=plain support

Browse Source
This commit is contained in:
Kévin Chalet 2021-05-25 16:52:37 +02:00
parent bc5b601d23
commit 24052130ee
1 changed files with 13 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

13
configuration/proof-key-for-code-exchange.md
View File

@ -52,4 +52,17 @@ await manager.CreateAsync(new OpenIddictApplicationDescriptor
Requirements.Features.ProofKeyForCodeExchange
}
});
```
## Enabling `code_challenge_method=plain` support
By default, OpenIddict only supports `code_challenge_method=S256`, which is the safest code challenge method and the only one required by the PKCE specification.
While not recommended, support for the `code_challenge_method=plain` method can be manually enabled by adding it to `OpenIddictServerOptions.CodeChallengeMethods`:
```csharp
services.AddOpenIddict()
.AddServer(options =>
{
options.Configure(options => options.CodeChallengeMethods.Add(CodeChallengeMethods.Plain));
});
```