4e2013e6ba
The [RFC](https://datatracker.ietf.org/doc/html/rfc7636#section-4.1) says that a code verifier just uses unreserved characters, but the recommended method is that it is a base64-urlencoded 32-octet url. Some implementations of PKCE (most notably the one used by salesforce) require that this is a valid base64 encoded string[1], so this patch switches to using the recommended approach to make it more compatible. [1]: https://help.salesforce.com/s/articleView?id=sf.remoteaccess_pkce.htm&type=5 |
||
|---|---|---|
| .. | ||
| cipher.go | ||
| cipher_test.go | ||
| nonce.go | ||
| utils.go | ||
| utils_test.go | ||