From 8fbdcafa7ba4e84c30f3377113999b873a1ec06a Mon Sep 17 00:00:00 2001
From: Tetardtek <kvnn64@gmail.com>
Date: Tue, 24 Mar 2026 13:19:19 +0100
Subject: [PATCH] =?UTF-8?q?fix:=20use=20localStorage=20for=20PKCE=20verifi?=
 =?UTF-8?q?er=20=E2=80=94=20survives=20cross-site=20redirects?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 frontend/src/lib/oauth.ts | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/frontend/src/lib/oauth.ts b/frontend/src/lib/oauth.ts
index df7b9a6..3ee6400 100644
--- a/frontend/src/lib/oauth.ts
+++ b/frontend/src/lib/oauth.ts
@@ -98,13 +98,13 @@ export async function exchangeCode(
 // --- PKCE verifier persistence (avant redirect) ---
 
 export function saveVerifier(verifier: string): void {
-  sessionStorage.setItem(SESSION_KEY_VERIFIER, verifier);
+  localStorage.setItem(SESSION_KEY_VERIFIER, verifier);
 }
 
 export function loadVerifier(): string | null {
-  return sessionStorage.getItem(SESSION_KEY_VERIFIER);
+  return localStorage.getItem(SESSION_KEY_VERIFIER);
 }
 
 export function clearVerifier(): void {
-  sessionStorage.removeItem(SESSION_KEY_VERIFIER);
+  localStorage.removeItem(SESSION_KEY_VERIFIER);
 }