From 468fc815134e40635da766a14b4e22d798cca695 Mon Sep 17 00:00:00 2001
From: Christoph Reiter <reiter.christoph@gmail.com>
Date: Thu, 9 Jan 2020 18:36:48 +0100
Subject: [PATCH] Enable PKCE

See https://tools.ietf.org/html/rfc7636
Supported in Keycloak since 7.0
---
 packages/auth/src/keycloak.js | 6 +++++-
 1 file changed, 5 insertions(+), 1 deletion(-)

diff --git a/packages/auth/src/keycloak.js b/packages/auth/src/keycloak.js
index bc0b3cf9..206856e9 100644
--- a/packages/auth/src/keycloak.js
+++ b/packages/auth/src/keycloak.js
@@ -94,7 +94,11 @@ export class KeycloakWrapper extends EventTarget {
             return;
         this._initDone = true;
 
-        const options = {promiseType: 'native'};
+        const options = {
+            promiseType: 'native',
+            pkceMethod: 'S256'
+        };
+
         if (this._silentCheckSsoUri) {
             options['onLoad'] = 'check-sso';
             options['silentCheckSsoRedirectUri'] = this._silentCheckSsoUri;
-- 
GitLab