fix oauth scopes · margin.at/margin@9485518

margin.at / margin

fork atom

Write on the margins of the internet. Powered by the AT Protocol. margin.at

extension web atproto comments

fork atom

fix oauth scopes

scanash.com 3 weeks ago 94855182 e87fc075

+4 -4

1 changed file

expand all

unified split

backend

internal

oauth

handler.go

+4 -4

backend/internal/oauth/handler.go

··· 148 149 pkceVerifier, pkceChallenge := client.GeneratePKCE() 150 151 - scope := "atproto offline_access blob:* blob:image/jpeg blob:image/png include:at.margin.authFull" 152 153 parResp, state, dpopNonce, err := client.SendPAR(meta, handle, scope, dpopKey, pkceChallenge) 154 if err != nil { ··· 236 } 237 238 pkceVerifier, pkceChallenge := client.GeneratePKCE() 239 - scope := "atproto offline_access blob:* blob:image/jpeg blob:image/png include:at.margin.authFull" 240 241 parResp, state, dpopNonce, err := client.SendPAR(meta, req.Handle, scope, dpopKey, pkceChallenge) 242 if err != nil { ··· 316 } 317 318 pkceVerifier, pkceChallenge := client.GeneratePKCE() 319 - scope := "atproto offline_access blob:* blob:image/jpeg blob:image/png include:at.margin.authFull" 320 321 parResp, state, dpopNonce, err := client.SendPARWithPrompt(meta, "", scope, dpopKey, pkceChallenge, "create") 322 if err != nil { ··· 608 "redirect_uris": []string{client.RedirectURI}, 609 "grant_types": []string{"authorization_code", "refresh_token"}, 610 "response_types": []string{"code"}, 611 - "scope": "atproto offline_access blob:* blob:image/jpeg blob:image/png include:at.margin.authFull", 612 "token_endpoint_auth_method": "private_key_jwt", 613 "token_endpoint_auth_signing_alg": "ES256", 614 "dpop_bound_access_tokens": true,

··· 148 149 pkceVerifier, pkceChallenge := client.GeneratePKCE() 150 151 + scope := "atproto blob:* blob:image/jpeg blob:image/png include:at.margin.authFull" 152 153 parResp, state, dpopNonce, err := client.SendPAR(meta, handle, scope, dpopKey, pkceChallenge) 154 if err != nil { ··· 236 } 237 238 pkceVerifier, pkceChallenge := client.GeneratePKCE() 239 + scope := "atproto blob:* blob:image/jpeg blob:image/png include:at.margin.authFull" 240 241 parResp, state, dpopNonce, err := client.SendPAR(meta, req.Handle, scope, dpopKey, pkceChallenge) 242 if err != nil { ··· 316 } 317 318 pkceVerifier, pkceChallenge := client.GeneratePKCE() 319 + scope := "atproto blob:* blob:image/jpeg blob:image/png include:at.margin.authFull" 320 321 parResp, state, dpopNonce, err := client.SendPARWithPrompt(meta, "", scope, dpopKey, pkceChallenge, "create") 322 if err != nil { ··· 608 "redirect_uris": []string{client.RedirectURI}, 609 "grant_types": []string{"authorization_code", "refresh_token"}, 610 "response_types": []string{"code"}, 611 + "scope": "atproto blob:* blob:image/jpeg blob:image/png include:at.margin.authFull", 612 "token_endpoint_auth_method": "private_key_jwt", 613 "token_endpoint_auth_signing_alg": "ES256", 614 "dpop_bound_access_tokens": true,