You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
* Rework openid service cookie handling to address a couple of potential issues
hightligthed by code scans. Namely, encode and decode cookie values to base64.
* Avoid manual cookie mangling and rely on SimpleCookie instead. Add extra
protection against cookie or header splitting issues even though input
validation should already prevent it.
* Allow @ in retry_url as we may end up there with `/openid/id/EMAIL` .
0 commit comments