issues Search Results · repo:akabe1/OAUTHScan language:Java
Filter by
7 results
(50 ms)7 results
inakabe1/OAUTHScan (press backspace or delete to remove)Isn t it normal to have a code in the URL when the Authorization Code flow is used?
Unless I misinterpret the meaning of the finding.
Thank you.
halfluke
- 2
- Opened on May 17
- #9
The burp extension has incorrectly identified and given this issue as the state is in the POST body instead of the
Request Parameters.
Here is the HTTP request
POST /usernamepassword/login HTTP/2
Host: ...
domwhewell
- 1
- Opened on Aug 4, 2023
- #8
The burp extension has incorrectly identified and given this issue as the code_challenge is in the POST body instead of
the Request Parameters.
Here is the HTTP request
POST /usernamepassword/login HTTP/2 ...
- 1
- Opened on Aug 4, 2023
- #7
What requests need to be Active Scanned for the checks to work ? Client, Authorization server, Protected Resource or all
? If the Authorization Server is out of scope and cannot be scanned will the plugins ...
AkikoOrenji
- 1
- Opened on Nov 17, 2022
- #6
I have tested an API endpoint that only issues an access token (without a refresh token), but the extension reports such
issue.
{ access_token : p7aj[...REDACTED...]J54hy , token_type : bearer , expires_in ...
- 4
- Opened on Aug 8, 2022
- #5
Manikant11
- 1
- Opened on Feb 14, 2022
- #2
Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.Learn how you can use GitHub Issues to plan and track your work.
Save views for sprints, backlogs, teams, or releases. Rank, sort, and filter issues to suit the occasion. The possibilities are endless.Learn more about GitHub IssuesProTip!
Press the /
key to activate the search input again and adjust your query.