AuzerAD: Handle empty `client_authentication` case (#99437)

AuzerAD: Require client secret when client_authentication is set to empty string
12 months ago · b79f1b2a29
parent b0347792cc
commit b79f1b2a29
1 changed files with 1 additions and 1 deletions
--- a/pkg/login/social/connectors/azuread_oauth.go
+++ b/pkg/login/social/connectors/azuread_oauth.go
@ -373,7 +373,7 @@ func validateClientAuthentication(info *social.OAuthInfo, requester identity.Req
 		}
 		return nil

-	case social.ClientSecretPost:
+	case social.ClientSecretPost, "":
 		if info.ClientSecret == "" {
 			return ssosettings.ErrInvalidOAuthConfig("Client secret is required for Client secret authentication.")
 		}