MokoConsulting/MokoJoomCross
1
0
Fork 0
Code Issues 105 Pull Requests Releases 1 Wiki Activity

Fixed: CSRF nonce on OAuth authorize/callback flow #84

New Issue
Open
opened 2026-05-29 05:30:23 +00:00 by jmiller · 1 comment
jmiller commented 2026-05-29 05:30:23 +00:00
Owner
Copy Link
Copy Source

Fixed in commit 8dd6fdd

Severity: Critical

What was wrong:
OAuth callback endpoint had no CSRF protection. A malicious link could trick a logged-in admin into connecting a service to an attacker-controlled account.

Fix applied:

  • Added session-based nonce generation in authorize() action
  • Timing-safe nonce validation via hash_equals() in callback()
  • Nonce embedded in OAuth state parameter and cleared after use

Files: OauthController.php, OAuthHelper.php

Label: priority: critical, status: pending-testing

## Fixed in commit 8dd6fdd **Severity:** Critical **What was wrong:** OAuth callback endpoint had no CSRF protection. A malicious link could trick a logged-in admin into connecting a service to an attacker-controlled account. **Fix applied:** - Added session-based nonce generation in `authorize()` action - Timing-safe nonce validation via `hash_equals()` in `callback()` - Nonce embedded in OAuth state parameter and cleared after use **Files:** `OauthController.php`, `OAuthHelper.php` **Label:** `priority: critical`, `status: pending-testing`
jmiller commented 2026-05-29 05:30:24 +00:00
Author
Owner
Copy Link
Copy Source

Branch created: feature/84-fixed-csrf-nonce-on-oauth-authorize-call

git fetch origin
git checkout feature/84-fixed-csrf-nonce-on-oauth-authorize-call
Branch created: [`feature/84-fixed-csrf-nonce-on-oauth-authorize-call`](https://git.mokoconsulting.tech/MokoConsulting/MokoJoomCross/src/branch/feature/84-fixed-csrf-nonce-on-oauth-authorize-call) ```bash git fetch origin git checkout feature/84-fixed-csrf-nonce-on-oauth-authorize-call ```
Sign in to join this conversation.
Labels
Clear labels
pending: testing
Implemented, awaiting testing
bug
Something is not working
 chore
Maintenance and housekeeping
 documentation
Documentation improvements
 enhancement
Improvement to existing functionality
 feature
New feature or request
 pending: dependency
Blocked by another issue or external dependency
 pending: deployment
Tested and approved, awaiting deployment to production
 pending: design
Needs UI/UX or architecture design before implementation
 pending: documentation
Feature works, needs documentation/wiki update
 pending: feedback
Awaiting feedback or decision from stakeholder
 pending: review
Implementation complete, awaiting code review
 pending: testing
Feature implemented but not yet tested
 priority: critical
Must fix immediately
 priority: high
Should fix soon
 priority: low
Nice to have
 priority: medium
Fix when convenient
 refactor
Code restructuring without behavior change
 roadmap
Planned feature or enhancement tracked on the roadmap
 scope: client
Client-specific work
 scope: dolibarr
Dolibarr modules and customizations
 scope: infrastructure
Server, CI, backups, monitoring
 scope: joomla
Joomla templates and extensions
 scope: waas
MokoWaaS platform
 security
Security vulnerability or hardening
 status: blocked
Waiting on external dependency
 status: duplicate
Duplicate of another issue
 status: in-progress
Being worked on
 status: needs-review
Ready for review
 status: wontfix
Will not be addressed
No labels
Type Bug
Status
Priority Critical
Milestone
No items
No Milestone
Assignees
Clear assignees
jmiller (Jonathan Miller)
No Assignees
1 Participants
Notifications
Due Date
No due date set.
Dependencies

No dependencies set.

Reference: MokoConsulting/MokoJoomCross#84
Delete Branch "%!s()"

Deleting a branch is permanent. Although the deleted branch may continue to exist for a short time before it actually gets removed, it CANNOT be undone in most cases. Continue?