fix: ensure decrypted request object is accessed in PAR responses

fixes #813
panva · Nov 8, 2020 · 09751d7 · 09751d7
1 parent 05c32d1
commit 09751d7
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/lib/actions/authorization/process_request_object.js b/lib/actions/authorization/process_request_object.js
@@ -54,7 +54,8 @@ module.exports = async function processRequestObject(PARAM_LIST, rejectDupesMidd
         decrypted = await JWT.decrypt(params.request, keystore);
       }
 
-      params.request = decrypted.toString('utf8');
+      // eslint-disable-next-line no-multi-assign
+      ctx.oidc.body = params.request = decrypted.toString('utf8');
     } catch (err) {
       if (err instanceof OIDCProviderError) {
         throw err;