The url safe base64 encoding function needs to be fixed to remove "=" padding

Created on 19 August 2024, 8 months ago

Updated 20 August 2024, 8 months ago

Problem

While implementing openidconnect authentication it was found that the jwk response of the route /oauth/jwk was giving an invalid url encoded base64 keys. the "=" padding is not needed in url encoded base64 still was being added to the response. This can be fixed by updating oauth2_server_base64url_decode() function in .module file as below.

Steps to reproduce

While trying to authenticate against any open id connect client you would see below error
"unmarshal json invalid base 64"

Proposed resolution

Update oauth2_server_base64url_decode()

function oauth2_server_base64url_decode($data) {
  return rtrim(strtr(base64_encode($data), '+/', '-_'), '=');
}

🐛 Bug report

Status

Needs review

Version

1.0

Component

Code

Created by

🇮🇳India tdnshah

Live updates comments and jobs are added and updated live.

Merge Requests

!33The url safe base64 encoding function needs to be fixed to remove "=" padding
Open
🇮🇳India tdnshah
updated 8 months ago

Comments & Activities

Issue created by @tdnshah
Merge request !33Issue #3468967 by tdnshah, The url safe base64 encoding function needs to be fixed to remove "=" padding → (Open) created by tdnshah
Status changed to Needs review 8 months ago10:35am 20 August 2024
Comment 8 months ago →
🇮🇳India tdnshah
Issue was unassigned.
Comment 8 months ago →
🇮🇳India tdnshah

contrib.social Blog FAQ Discussions

Production build 0.71.5 2024