code-challenge | Code challenge est un projet communautaire en php et

I Integrated Cognito Userpool with Federated Identity [Okta - As Secure Web Authentication]. The flows works fine with Authorization Code Flow without PKCE (Using Amplify with Angular).

Created a similar app as SPA(in Okta), to enable PKCE and integrated with Cognito federated identities. When we redirect to Hosted UI, the challenge is getting passed to hosted UI in the URL.

But after it redirects to okta, it is throwing this error.

pkce code challenge is required when the token endpoint authentication method is 'none'

Is there any additional configuration required in Cognito to pass code-challenge to Okta.

I am using Authorization Code flow in Cognito and Okta.

Attaching the configuration in Okta.

Attaching the configuration in Cognito

Imagine this attack

1. An attacker intercepts the first call to the authorization server, then they have the code-challenge. (step 1 in the diagram)
2. The attacker now intercepts the response from the authorization server with the authorization code. (step 2 in the diagram)
3. Then the attacker can POST the authorization-code and the code-verifier to get the access token. (step 3)

Refer to this diagram: flow:

Questions

1. What prevents the attacker intercepting the first call to the authorization server? This is what is meant to make authorization code + PKCE more secure than implicit flow.

2. Perhaps it does not matter if the call is intercepted because the code-challenge is hashed and therefore the attacker does not have the code-verifier required for the 2nd call. But what if the code-challenge is not hashed?

This was answered below:

I've been having trouble rendering the API results from a simple fake JSON. The JSON is at this endpoint: https://testapi.io/api/crimsonsunset/code-challenge-jobs

My service.ts looks like this:

I have an array like so [1,9,9,9,9,9]. I want to increment this array by one and return [2,0,0,0,0,0]. Here's the catch - you can't join() or concat(). You cannot change the array in any way other than adding to it. However, you can reverse it but I'm not sure how much that would help

Also, here are a few other examples;

[1,8,9] => [1,9,0];

[1,2,3,9,1] => [1,2,3,9,2];

[5,7,9,9] => [5,8,0,0];

The result can only return an array with single digits.

Basically, pretend that the array is a single number and you're adding 1 to it. Again, no joining, splitting, turning into a string.. etc.

Ideally, I would like a classic loop solution or possibly a recursion solution. Thank you!

here is my repl.it https://repl.it/@CharChar5/Code-Challenge

Thank you in advance for your help and I'm terribly sorry if my questions title is too long and confusing. I'm certainly working on formatting better questions and building a stronger rep on SO.

https://repl.it/@CharChar5/Code-Challenge

Currently this is my code: