From a5ad943584e91bfbd953dc373a7a313367c7e0ae Mon Sep 17 00:00:00 2001
From: vman <public@vaughnnugent.com>
Date: Thu, 15 Dec 2022 01:41:41 -0500
Subject: Mfa/login fixes

---
 VNLib.Plugins.Essentials.SocialOauth/SocialOauthBase.cs | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

(limited to 'VNLib.Plugins.Essentials.SocialOauth/SocialOauthBase.cs')

diff --git a/VNLib.Plugins.Essentials.SocialOauth/SocialOauthBase.cs b/VNLib.Plugins.Essentials.SocialOauth/SocialOauthBase.cs
index 5728992..6815bf3 100644
--- a/VNLib.Plugins.Essentials.SocialOauth/SocialOauthBase.cs
+++ b/VNLib.Plugins.Essentials.SocialOauth/SocialOauthBase.cs
@@ -75,7 +75,7 @@ namespace VNLib.Plugins.Essentials.SocialOauth
              * Disable cross site checking because the OAuth2 flow requires
              * cross site when redirecting the client back
              */
-            CrossSiteDenied = false
+            DisableCrossSiteDenied = true
         };
 
         /// <summary>
@@ -283,7 +283,7 @@ namespace VNLib.Plugins.Essentials.SocialOauth
                     return VfReturnType.VirtualSkip;
                 }
                 //Try to get the claim from the state parameter
-                if (ClaimStore.TryGetOrEvictRecord(state, out LoginClaim claim) < 1)
+                if (ClaimStore.TryGetOrEvictRecord(state, out LoginClaim? claim) < 1)
                 {
                     entity.Redirect(RedirectType.Temporary, $"{Path}?result=expired");
                     return VfReturnType.VirtualSkip;
@@ -361,7 +361,7 @@ namespace VNLib.Plugins.Essentials.SocialOauth
                 return VfReturnType.VirtualSkip;
             }
             //Recover the access token
-            if (AuthorizationStore.TryGetOrEvictRecord(base32Nonce!, out OAuthAccessState token) < 1)
+            if (AuthorizationStore.TryGetOrEvictRecord(base32Nonce!, out OAuthAccessState? token) < 1)
             {
                 webm.Result = AUTH_ERROR_MESSAGE;
                 entity.CloseResponse(webm);
-- 
cgit