14 lines
799 B
Diff
14 lines
799 B
Diff
diff --git a/packages/oauth/oauth-provider/src/router/create-authorization-page-middleware.ts b/packages/oauth/oauth-provider/src/router/create-authorization-page-middleware.ts
|
|
index f653b0353..45c45fac1 100644
|
|
--- a/packages/oauth/oauth-provider/src/router/create-authorization-page-middleware.ts
|
|
+++ b/packages/oauth/oauth-provider/src/router/create-authorization-page-middleware.ts
|
|
@@ -53,7 +53,7 @@ export function createAuthorizationPageMiddleware<
|
|
res.setHeader('Cache-Control', 'no-store')
|
|
res.setHeader('Pragma', 'no-cache')
|
|
|
|
- validateFetchSite(req, ['cross-site', 'none'])
|
|
+ validateFetchSite(req, ['cross-site', 'same-site', 'none'])
|
|
validateFetchMode(req, ['navigate'])
|
|
validateFetchDest(req, ['document'])
|
|
validateOrigin(req, issuerOrigin)
|