fix(core): Ensure oauth4webapi uses a stable customFetch API (#10978)

Co-authored-by: Nico Domino <yo@ndo.dev>
nextauthjs · Jun 1, 2024 · f1bf7ae · f1bf7ae
1 parent 16f5274
commit f1bf7ae
Show file tree

Hide file tree

Showing 3 changed files with 7 additions and 7 deletions.
diff --git a/packages/core/package.json b/packages/core/package.json
@@ -66,7 +66,7 @@
     "@types/cookie": "0.6.0",
     "cookie": "0.6.0",
     "jose": "^5.1.3",
-    "oauth4webapi": "^2.4.0",
+    "oauth4webapi": "^2.9.0",
     "preact": "10.11.3",
     "preact-render-to-string": "5.2.3"
   },

diff --git a/packages/core/src/lib/actions/callback/oauth/callback.ts b/packages/core/src/lib/actions/callback/oauth/callback.ts
@@ -111,7 +111,7 @@ export async function handleOAuth(
     redirect_uri,
     codeVerifier ?? "auth", // TODO: review fallback code verifier,
     {
-      [o.experimental_customFetch]: (...args) => {
+      [o.customFetch]: (...args) => {
         if (
           !provider.checks.includes("pkce") &&
           args[1]?.body instanceof URLSearchParams

diff --git a/pnpm-lock.yaml b/pnpm-lock.yaml