diff options
Diffstat (limited to 'app/controllers/sessions/service.go')
| -rw-r--r-- | app/controllers/sessions/service.go | 3 |
1 files changed, 1 insertions, 2 deletions
diff --git a/app/controllers/sessions/service.go b/app/controllers/sessions/service.go index 79ffad6..c0466e4 100644 --- a/app/controllers/sessions/service.go +++ b/app/controllers/sessions/service.go @@ -11,7 +11,6 @@ import ( "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/app/cfg" "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/pkg/oidc" "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/pkg/pls" - "gitlab.com/gitlab-org/software-supply-chain-security/authorization/sparkled/pkg/web" "golang.org/x/oauth2" ) @@ -44,7 +43,7 @@ func (svc *Service) Exchange(r *http.Request) (*oidc.Tokens, error) { } state := r.URL.Query().Get("state") - if state != web.CookieValueFrom(cookies[0]) { + if state != cookies[0].Value { return nil, errors.New("Invalid CSRF token") } |