From dd9d049d67bdd608dd3aea33c301817dd4cb0d8c Mon Sep 17 00:00:00 2001
From: YuriyZ <yzabrovarniy@gmail.com>
Date: Fri, 30 Dec 2022 12:31:57 +0200
Subject: [PATCH] feat(jans-auth-server): renamed "code"->"random" uniqueness
 claims of id_token to avoid confusion with Authorization Code Flow #3466
 (#3467)

---
 .../main/java/io/jans/as/server/model/token/IdTokenFactory.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/jans-auth-server/server/src/main/java/io/jans/as/server/model/token/IdTokenFactory.java b/jans-auth-server/server/src/main/java/io/jans/as/server/model/token/IdTokenFactory.java
index b7e680d37a1..72ae4d55eb6 100644
--- a/jans-auth-server/server/src/main/java/io/jans/as/server/model/token/IdTokenFactory.java
+++ b/jans-auth-server/server/src/main/java/io/jans/as/server/model/token/IdTokenFactory.java
@@ -142,7 +142,7 @@ private void fillClaims(JsonWebResponse jwr,
 
         jwr.getClaims().setExpirationTime(expiration);
         jwr.getClaims().setIssuedAt(issuedAt);
-        jwr.setClaim("code", UUID.randomUUID().toString());
+        jwr.setClaim("random", UUID.randomUUID().toString()); // provided uniqueness of id_token for same RP requests, oxauth: 1493
 
         if (executionContext.getPreProcessing() != null) {
             executionContext.getPreProcessing().apply(jwr);