fix(sso): null out oidcConfig on parse failure to prevent unredacted secret leak

waleedlatif1 · waleedlatif1 · commit cd0fc46a7ab5 · 2026-04-20T16:04:52.000-07:00
diff --git a/apps/sim/app/api/auth/sso/providers/route.ts b/apps/sim/app/api/auth/sso/providers/route.ts
@@ -58,7 +58,9 @@ export async function GET(request: NextRequest) {
             const parsed = JSON.parse(oidcConfig)
             parsed.clientSecret = REDACTED_MARKER
             oidcConfig = JSON.stringify(parsed)
-          } catch {}
+          } catch {
+            oidcConfig = null
+          }
         }
         return {
           ...provider,
