Skip to content

Fix Bug #3622: Fix OAuth authorisation code parsing and encoding during token redemption #3625

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
abraunegg merged 2 commits into from
Jan 28, 2026
Merged

Fix Bug #3622: Fix OAuth authorisation code parsing and encoding during token redemption #3625

abraunegg merged 2 commits into from
Jan 28, 2026
+9 −7

Conversation

@abraunegg
Copy link
Owner

@abraunegg abraunegg commented Jan 28, 2026

Fix an issue where OAuth authorisation codes containing non-alphanumeric characters were truncated or incorrectly transmitted during token redemption.

The client now captures the full code query parameter from the redirect URI and ensures it is correctly form-encoded when posting to the token endpoint. Authorization codes are treated as opaque values and relayed exactly as returned by Microsoft, preventing AADSTS70000 errors caused by client-side parsing assumptions.

@abraunegg
Fix Bug #3622:Fix OAuth authorisation code parsing and encoding durin…
1c54700 
…g token redemption

Fix an issue where OAuth authorisation codes containing non-alphanumeric
characters were truncated or incorrectly transmitted during token redemption.

The client now captures the full `code` query parameter from the redirect URI
and ensures it is correctly form-encoded when posting to the token endpoint.
Authorization codes are treated as opaque values and relayed exactly as
returned by Microsoft, preventing AADSTS70000 errors caused by client-side
parsing assumptions.
@abraunegg abraunegg added this to the v2.5.10 milestone Jan 28, 2026
@abraunegg abraunegg linked an issue Jan 28, 2026 that may be closed by this pull request
Bug: oauth2 codes can contain other characters #3622
Closed
@abraunegg
Update PR
ad1853a 
* Update PR by decoding string before passing string in to be encoded to be compatible with the application/x-www-form-urlencoded requirement
@abraunegg abraunegg merged commit a63f7e5 into master Jan 28, 2026
10 checks passed
@abraunegg abraunegg deleted the fix-issue-3622 branch January 28, 2026 10:18
@abraunegg
Copy link
Owner Author

abraunegg commented Feb 5, 2026

This pull request has been automatically locked since there has not been any recent activity after it was closed. Please open a new issue for related bugs.

Repository owner locked and limited conversation to collaborators Feb 5, 2026
@abraunegg abraunegg changed the title Fix Bug #3622:Fix OAuth authorisation code parsing and encoding during token redemption Fix Bug #3622: Fix OAuth authorisation code parsing and encoding during token redemption Feb 9, 2026
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

v2.5.10

Development

Successfully merging this pull request may close these issues.

Bug: oauth2 codes can contain other characters

1 participant

@abraunegg