Default PKCE method when missing

Co-authored-by: HFO4 <16058869+HFO4@users.noreply.github.com>
Increase OAuth state limit
2026-03-07 00:17:02 +00:00 · 2026-02-03 06:54:13 +00:00 · 2026-02-03 06:53:13 +00:00 · 2026-02-03 06:41:19 +00:00
1 changed files with 5 additions and 2 deletions
--- a/service/oauth/oauth.go
+++ b/service/oauth/oauth.go
@@ -48,10 +48,10 @@ type (
 		ClientID            string `json:"client_id" binding:"required"`
 		ResponseType        string `json:"response_type" binding:"required,eq=code"`
 		RedirectURI         string `json:"redirect_uri" binding:"required"`
-		State               string `json:"state" binding:"max=255"`
+		State               string `json:"state" binding:"max=4096"`
 		Scope               string `json:"scope" binding:"required"`
 		CodeChallenge       string `json:"code_challenge" binding:"max=255"`
-		CodeChallengeMethod string `json:"code_challenge_method" binding:"eq=S256,omitempty"`
+		CodeChallengeMethod string `json:"code_challenge_method" binding:"omitempty,eq=S256"`
 	}
 )

@@ -60,6 +60,9 @@ func (s *GrantService) Get(c *gin.Context) (*GrantResponse, error) {
 	user := inventory.UserFromContext(c)
 	kv := dep.KV()
 	oAuthClient := dep.OAuthClientClient()
+	if s.CodeChallenge != "" && s.CodeChallengeMethod == "" {
+		s.CodeChallengeMethod = "S256"
+	}

 	// 1. Get app registration and grant
 	app, err := oAuthClient.GetByGUIDWithGrants(c, s.ClientID, user.ID)
Author	SHA1	Message	Date
copilot-swe-agent[bot]	541f0e119f	Default PKCE method when missing Co-authored-by: HFO4 <16058869+HFO4@users.noreply.github.com>	2026-02-03 06:54:13 +00:00
copilot-swe-agent[bot]	0da65dcbf3	Increase OAuth state limit Co-authored-by: HFO4 <16058869+HFO4@users.noreply.github.com>	2026-02-03 06:53:13 +00:00
copilot-swe-agent[bot]	04a144fd61	Initial plan	2026-02-03 06:41:19 +00:00