From 118d4e4d0361c7bc52c3092ba34273a31122c0db Mon Sep 17 00:00:00 2001
From: tobi <tobi.smethurst@protonmail.com>
Date: Thu, 5 Jun 2025 11:29:36 +0200
Subject: [bugfix] Assume default code challenge method of s256 (#4241)

Bumps our oauth2 dependency, and uses *default* code challenge method of S256 instead of plain.

Fixes https://codeberg.org/superseriousbusiness/gotosocial/issues/4238

Reviewed-on: https://codeberg.org/superseriousbusiness/gotosocial/pulls/4241
Co-authored-by: tobi <tobi.smethurst@protonmail.com>
Co-committed-by: tobi <tobi.smethurst@protonmail.com>
---
 internal/oauth/server.go | 1 +
 1 file changed, 1 insertion(+)

(limited to 'internal/oauth/server.go')

diff --git a/internal/oauth/server.go b/internal/oauth/server.go
index 05872318a..b61a86ea1 100644
--- a/internal/oauth/server.go
+++ b/internal/oauth/server.go
@@ -128,6 +128,7 @@ func New(
 			AllowedCodeChallengeMethods: []oauth2.CodeChallengeMethod{
 				oauth2.CodeChallengeS256,
 			},
+			DefaultCodeChallengeMethod: oauth2.CodeChallengeS256,
 		},
 		manager,
 	)
-- 
cgit v1.2.3