From 8b70eded6c9cc3b9cf634356239701fe65779791 Mon Sep 17 00:00:00 2001 From: Vitaly Takmazov Date: Fri, 13 Jan 2023 15:46:48 +0300 Subject: Specify explicit list of claims expected in JWT verification --- src/main/java/com/juick/www/api/ApiSocialLogin.java | 2 +- src/main/java/com/juick/www/controllers/SocialLogin.java | 2 +- 2 files changed, 2 insertions(+), 2 deletions(-) (limited to 'src/main/java/com/juick') diff --git a/src/main/java/com/juick/www/api/ApiSocialLogin.java b/src/main/java/com/juick/www/api/ApiSocialLogin.java index c1e31b68..a05e33d9 100644 --- a/src/main/java/com/juick/www/api/ApiSocialLogin.java +++ b/src/main/java/com/juick/www/api/ApiSocialLogin.java @@ -122,7 +122,7 @@ public class ApiSocialLogin { appleSignInService = appleSignInBuilder .callback(appleSignInRedirectUri) .defaultScope("email") - .build(new AppleSignInApi(clientSecretGenerator)); + .build(new AppleSignInApi(clientSecretGenerator, appleApplicationId)); } @GetMapping("/api/_fblogin") diff --git a/src/main/java/com/juick/www/controllers/SocialLogin.java b/src/main/java/com/juick/www/controllers/SocialLogin.java index 3e865215..4e26ab99 100644 --- a/src/main/java/com/juick/www/controllers/SocialLogin.java +++ b/src/main/java/com/juick/www/controllers/SocialLogin.java @@ -124,7 +124,7 @@ public class SocialLogin { ServiceBuilder appleSignInBuilder = new ServiceBuilder(appleApplicationId); String appleSignInRedirectUri = redirectBuilder.replacePath("/_apple").build().toUriString(); appleSignInService = appleSignInBuilder.callback(appleSignInRedirectUri).defaultScope("email") - .build(new AppleSignInApi(clientSecretGenerator)); + .build(new AppleSignInApi(clientSecretGenerator, appleApplicationId)); } @GetMapping("/_fblogin") -- cgit v1.2.3