krombel/oauth2
1
0
Fork 0
forked from remote/oauth2
Code Pull Requests 1 Activity

authhandler: Reword comment regarding state in example

Browse Source
This commit is contained in:
Andy Zhao
2021-03-19 11:53:37 -07:00
parent 1ae374609f
commit 48fc0367c2
1 changed files with 4 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
authhandler/example_test.go
View File

@@ -18,8 +18,10 @@ import (
// the auth URL to the console and prompts the user to authorize in the // the auth URL to the console and prompts the user to authorize in the
// browser and paste the auth code back via stdin. // browser and paste the auth code back via stdin.
// //
// Per the OAuth protocol, a unique "state" string should be sent and verified // Per the OAuth protocol, a unique "state" string should be specified here.
// before exchanging auth code for OAuth token to prevent CSRF attacks. // The authhandler token source will verify that the "state" is identical in
// the request and response before exchanging the auth code for OAuth token to
// prevent CSRF attacks.
// //
// For convenience, this handler returns a pre-configured state instead of // For convenience, this handler returns a pre-configured state instead of
// asking the user to additionally paste the state from the auth response. // asking the user to additionally paste the state from the auth response.