I want to implement Prevent Attacks and Redirect Users with OAuth 2.0 State Parameters. A.K.A, to custom state by my logic.
Obviously, according to https://github.com/omniauth/omniauth-oauth2/blob/3e7ee11c84153e6f0c19d38a5e63cda550f6925c/lib/omniauth/strategies/oauth2.rb#L63, there is no way you can replace the state.
Hi @cslearner,
Welcome to the Auth0 Community!
I moved this to a new topic because it’s not the same request as the thread you originally posted in.
It doesn’t look like you can pass a custom state (at least from my perspective, I could be missing something). I would suggest creating an issue in the repo as a feature request.
This topic was automatically closed 14 days after the last reply. New replies are no longer allowed.