challenger

OAuth 2.0-based authentication service that validates user can receive messages at a certain address
Log | Files | Refs | Submodules | README | LICENSE
commit 5fdac75795009a7f4dc0e954997ca8dee66eb15b
parent 82780cee92875a6278ae33f70b3f008de7a54ba1
Author: Christian Grothoff <christian@grothoff.org>
Date:   Sun, 26 Apr 2026 09:36:08 +0200

implement spec strictly, only accept S256 and not also sha256

Diffstat:

Msrc/challenger/challenger_cm_enums.c | 6++----


1 file changed, 2 insertions(+), 4 deletions(-)

diff --git a/src/challenger/challenger_cm_enums.c b/src/challenger/challenger_cm_enums.c
@@ -34,10 +34,8 @@ CHALLENGER_cm_from_string (const char *method_str)
   if (0 == strcmp (method_str,
                    "plain"))
     return CHALLENGER_CM_PLAIN;
-  if ( (0 == strcmp (method_str,
-                     "S256")) ||
-       (0 == strcmp (method_str,
-                     "sha256")))
+  if (0 == strcmp (method_str,
+                   "S256"))
     return CHALLENGER_CM_S256;
   return CHALLENGER_CM_UNKNOWN;
 }