livecodepanos
diff --git a/‎extensions/script-libraries/oauth2/notes/22557.md
Copy file name to clipboard
+1Lines changed: 1 addition & 0 deletions b/‎extensions/script-libraries/oauth2/notes/22557.md
Copy file name to clipboard
+1Lines changed: 1 addition & 0 deletions
diff --git a/‎extensions/script-libraries/oauth2/oauth2.livecodescript
Copy file name to clipboardExpand all lines: extensions/script-libraries/oauth2/oauth2.livecodescript
+2-1Lines changed: 2 additions & 1 deletion b/‎extensions/script-libraries/oauth2/oauth2.livecodescript
Copy file name to clipboardExpand all lines: extensions/script-libraries/oauth2/oauth2.livecodescript
+2-1Lines changed: 2 additions & 1 deletion
@@ -0,0 +1 @@
+# [22557] Prevent double URL encoding of authentication code
@@ -238,13 +238,14 @@ command OAuth2 pAuthURL, pTokenURL, pClientID, pClientSecret, pScopes, pPort, pP
 
    local tResult
    put the dialogData into tResult
+   -- all keys/values in tResult are already URL encoded
 
    if tResult["code"] is not empty then
       local tParams
       put "grant_type=authorization_code" into tParams
       put "&client_id=" & urlEncode(pClientID) after tParams
       put "&client_secret=" & urlEncode(pClientSecret) after tParams
-      put "&code=" & urlEncode(tResult["code"]) after tParams
+      put "&code=" & tResult["code"] after tParams
       put "&redirect_uri=" & urlEncode(kRedirectURL & ":" & pPort & "/") after tParams
 
       local tResponse
Original file line number	Diff line number	Diff line change
`@@ -0,0 +1 @@`
	`1`	`+# [22557] Prevent double URL encoding of authentication code`