chore: Use calculated codeVerifier when acquiring the access token

Sphereon-Opensource · Jan 23, 2024 · ea31c2b · ea31c2b
1 parent 99f55c2
commit ea31c2b
Showing 1 changed file with 5 additions and 2 deletions.
diff --git a/packages/client/lib/OpenID4VCIClient.ts b/packages/client/lib/OpenID4VCIClient.ts
@@ -251,8 +251,11 @@ export class OpenID4VCIClient {
     code?: string;
     redirectUri?: string;
   }): Promise<AccessTokenResponse> {
-    const { pin, clientId, codeVerifier, code, redirectUri } = opts ?? {};
+    const { pin, clientId, code, redirectUri } = opts ?? {};
 
+    if (opts?.codeVerifier) {
+      this._pkce.codeVerifier = opts.codeVerifier;
+    }
     this.assertIssuerData();
 
     if (clientId) {
@@ -266,7 +269,7 @@ export class OpenID4VCIClient {
         metadata: this.endpointMetadata,
         credentialIssuer: this.getIssuer(),
         pin,
-        codeVerifier,
+        ...(!this._pkce.disabled && { codeVerifier: this._pkce.codeVerifier }),
         code,
         redirectUri,
         asOpts: { clientId },