From 07552bc0b195986610e13106c181fb82ab166d36 Mon Sep 17 00:00:00 2001
From: Lakhan Samani <lakhan.m.samani@gmail.com>
Date: Sat, 5 Mar 2022 13:50:59 +0530
Subject: [PATCH] fix: use url safe code verifier

---
 server/handlers/token.go | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

diff --git a/server/handlers/token.go b/server/handlers/token.go
index 095dcd1..6d852d1 100644
--- a/server/handlers/token.go
+++ b/server/handlers/token.go
@@ -54,7 +54,9 @@ func TokenHandler() gin.HandlerFunc {
 
 		hash := sha256.New()
 		hash.Write([]byte(codeVerifier))
-		encryptedCode := strings.TrimSuffix(base64.URLEncoding.EncodeToString(hash.Sum(nil)), "=")
+		encryptedCode := strings.ReplaceAll(base64.URLEncoding.EncodeToString(hash.Sum(nil)), "+", "-")
+		encryptedCode = strings.ReplaceAll(encryptedCode, "/", "_")
+		encryptedCode = strings.ReplaceAll(encryptedCode, "=", "")
 		sessionData := sessionstore.GetState(encryptedCode)
 		if sessionData == "" {
 			gc.JSON(http.StatusBadRequest, gin.H{