Add code-challenge-method to oauth2-proxy configuration for enhanced security compliance

2025-12-10 04:40:01 -06:00
parent 7ab8789799
commit 451359dc4d
1 changed files with 1 additions and 0 deletions
--- a/modules/servers/oauth2-proxy.nix
+++ b/modules/servers/oauth2-proxy.nix
@@ -44,6 +44,7 @@ in
        auth-logging = true;
        session-store-type = "cookie";
        skip-provider-button = true;
+        code-challenge-method = "S256";
      };
    };
  };