Replies: 1 comment
-
|
NextAuth.js already includes the necessary checks (See Google for example ) |
Beta Was this translation helpful? Give feedback.
0 replies
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Uh oh!
There was an error while loading. Please reload this page.
-
Description 📓
I am requesting a feature to allow fetch the authoization url from backend, and set to the provider before navigating to the provider auth page.
Why need this feature? Because backend able to generate the authorization with some random key in the state query and save it in the redis cache as session. The purpose of this is to prevent the user spam the oauth url, and increase the security measure.
How to reproduce ☕️
Current Behavior
authorization: {
url: "https://accounts.google.com/o/oauth2/v2/auth",
params: {
scope: "openid email profile",
response_type: "code",
redirect_uri: "http://localhost:3000/api/auth/callback/google",
},
},
Expected Behavior
authorization: {
request: () =>{
const authUrl = API.fetch("https://accounts.google.com/o/oauth2/v2/auth" )
return authUrl
}
},
Contributing 🙌🏽
No, I am afraid I cannot help regarding this
Beta Was this translation helpful? Give feedback.
All reactions