omniauth / omniauth-oauth2 Public

Notifications You must be signed in to change notification settings
Fork 303
Star 501

Code
Issues 40
Pull requests 14
Actions
Projects
Wiki
Security
Insights

Additional navigation options

Code
Issues
Pull requests
Actions
Projects
Wiki
Security
Insights

Issues: omniauth/omniauth-oauth2

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

40 Open 49 Closed

Author

Filter by author

Label

Filter by label

Use alt + click/return to exclude labels

or ⇧ + click/return for logical OR

Projects

Filter by project

Milestones

Filter by milestone

Assignee

Filter by who’s assigned

Assigned to nobody

Sort

Sort by

Newest Oldest Most commented Least commented Recently updated Least recently updated Best match

Most reactions

Issues list

CVE-2020-36599 (Critical), CVE-2015-9284 (High)

#178 opened May 13, 2024 by wimpog

Duplicate redirect_uri in Callback phase

#161 opened Aug 29, 2022 by dombarnes

NoMethodError (undefined method `expired?' for nil:NilClass)

#160 opened Aug 19, 2022 by aarthi-mallow

I get the response that I need but its considered as authentication Failure

#159 opened Jul 21, 2022 by laptopmutia

Invalid JWT token type (invalid_credentials: OAuth2::Error)

#157 opened Jul 16, 2022 by dombarnes

omniauth: (google_login) Authentication failure! csrf_detected (only Safari)

#155 opened Jun 22, 2022 by gingerlime

@agrobbin @sferik Could you review this, if you still have an interest in the issue?

#154 opened Jun 21, 2022 by Noip1

Well, seems it's working now after I upgrade to the latest version. The state parameter can be parsed as I expect.

#151 opened May 17, 2022 by Drblack101

Refresh token is not read if expires_in or expires_at is not present

#143 opened Oct 20, 2021 by fabioxgn

Possible issue with mirroring back the query params that were passed from authorization server

#141 opened Oct 5, 2021 by menisy

authorize url controller redirects using 302 instead of 307

#139 opened Apr 2, 2021 by mildred

undefined method `expired?' for nil:NilClass

#138 opened Feb 19, 2021 by kinitawowi

request.env['omniauth.origin'] always nil

#137 opened Feb 9, 2021 by ramonpm

Implementing omniauth strategy for authorization code grant

#126 opened Mar 4, 2019 by BigMcLargeHuge

Always provide refresh token, whether access token expires or not

#122 opened Sep 12, 2018 by RKushnir

Custom Strategy - OmniAuth::NoSessionError

#120 opened Jun 18, 2018 by tardoe

oauth2 dependency v2.0 and looking for additional maitainers

#119 opened May 28, 2018 by joshRpowell

Got an error on deep_symbolize after authentication

#118 opened May 9, 2018 by shioimm

Where Does The Subclass Go?

#116 opened Apr 4, 2018 by perlmunger

http call and response leading to invalid_credentials error with familysearch strategy

#102 opened Feb 15, 2017 by genlighten

CSRF protection bypassed.

#101 opened Feb 12, 2017 by ehsahil

Redirect URI Required not Optional

#98 opened Aug 3, 2016 by vpfaulkner

After a successful login if I go back in browser I get CSRF detected error

#95 opened Jul 22, 2016 by ristovskiv

redirect_uri parameter given to authorization endpoint is not identical to the one given to the token endpoint

#93 opened Jun 10, 2016 by mulka

Invalid redirect_uri with load_balance. Force domain.

#86 opened Jan 23, 2016 by renatocassino

Previous 1 2 Next

Previous Next

ProTip! Updated in the last three days: updated:>2024-11-09.

Provide feedback

Saved searches

Use saved searches to filter your results more quickly