Generate PKCE code verifier and challenge pair
Uses SHA-256 hashing (S256 method) as recommended by RFC 7636. Code verifier is 32 random bytes base64url-encoded (43 characters).
PKCE pair with verifier and challenge
const { verifier, challenge } = generatePKCE();// Use challenge in authorization URLauthUrl.searchParams.set('code_challenge', challenge);authUrl.searchParams.set('code_challenge_method', 'S256');// Later, use verifier in token exchangetokenParams.code_verifier = verifier; Copy
const { verifier, challenge } = generatePKCE();// Use challenge in authorization URLauthUrl.searchParams.set('code_challenge', challenge);authUrl.searchParams.set('code_challenge_method', 'S256');// Later, use verifier in token exchangetokenParams.code_verifier = verifier;
Generate PKCE code verifier and challenge pair
Uses SHA-256 hashing (S256 method) as recommended by RFC 7636. Code verifier is 32 random bytes base64url-encoded (43 characters).