templates/authorize.str in rodauth-oauth-1.4.0 vs templates/authorize.str in rodauth-oauth-1.5.0
- old
+ new
@@ -94,9 +94,10 @@
rodauth.resource_indicators.map do |resource|
"<input type=\"hidden\" name=\"resource\" value=\"#{resource}\"/>"
end.join
end
}
+ #{"<input type=\"hidden\" name=\"dpop_jkt\" value=\"#{h(rodauth.param("dpop_jkt"))}\"/>" if rodauth.features.include?(:oauth_dpop) && rodauth.param_or_nil("dpop_jkt")}
</div>
<p class="text-center">
<input type="submit" class="btn btn-outline-primary" value="#{h(rodauth.oauth_authorize_button)}"/>
<a href="#{rodauth.redirect_uri}?error=access_denied&error_description=The+resource+owner+or+authorization+server+denied+the+request#{ "&state=#{rodauth.param("state")}" if rodauth.param_or_nil("state")}" class="btn btn-outline-danger">
#{rodauth.oauth_cancel_button}