You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@oltu.apache.org by "Ed Anuff (JIRA)" <ji...@apache.org> on 2011/09/16 05:10:09 UTC
[jira] [Created] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
OAuthAccessResourceRequest and extractors using old version of spec to find access token
----------------------------------------------------------------------------------------
Key: AMBER-28
URL: https://issues.apache.org/jira/browse/AMBER-28
Project: Amber
Issue Type: Bug
Affects Versions: 1.0
Reporter: Ed Anuff
http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Resolved] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Lukasz Moren (Resolved) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Lukasz Moren resolved AMBER-28.
-------------------------------
Resolution: Fixed
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Lukasz Moren (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13203650#comment-13203650 ]
Lukasz Moren commented on AMBER-28:
-----------------------------------
+ 1 from me. Thanks Raymond. I just think that http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.1 is no covered by this patch, extracting token from Authorization header?
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Tommaso Teofili (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Tommaso Teofili updated AMBER-28:
---------------------------------
Fix Version/s: 0.22
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Fix For: 0.22
>
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Antonio Sanso (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13203653#comment-13203653 ]
Antonio Sanso commented on AMBER-28:
------------------------------------
@Lukasz I think this is covered in AMBER-29
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Closed] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Antonio Sanso (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Antonio Sanso closed AMBER-28.
------------------------------
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Fix For: 0.22
>
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Antonio Sanso (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13202224#comment-13202224 ]
Antonio Sanso commented on AMBER-28:
------------------------------------
thanks for the patch Raymond.
+1 for me.
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Lukasz Moren (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13204402#comment-13204402 ]
Lukasz Moren commented on AMBER-28:
-----------------------------------
If that's fine I could apply patch for AMBER-28 and AMBER-29 (+test fix)?
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Assigned] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Antonio Sanso (Assigned) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Antonio Sanso reassigned AMBER-28:
----------------------------------
Assignee: Antonio Sanso
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Lukasz Moren (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13204395#comment-13204395 ]
Lukasz Moren commented on AMBER-28:
-----------------------------------
Thanks Antonio, I missed that
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Raymond Feng (Updated) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Raymond Feng updated AMBER-28:
------------------------------
Attachment: AMBER_28.patch
Here is a patch for AMBER_28. It will check the presence of "access_token" first and fall back to "oauth_token"
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Commented] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Antonio Sanso (Commented) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=13204405#comment-13204405 ]
Antonio Sanso commented on AMBER-28:
------------------------------------
+1 from me
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Ed Anuff (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Ed Anuff updated AMBER-28:
--------------------------
Component/s: Parent
OAuth 2.0 - Resource Server
OAuth 2.0 - Authorization Server
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Raymond Feng (Updated) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Raymond Feng updated AMBER-28:
------------------------------
Attachment: AMBER-28-final.patch
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER-28-final.patch, AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Raymond Feng (Updated) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Raymond Feng updated AMBER-28:
------------------------------
Attachment: AMBER_28.patch
Sorry for the mess. This is the last patch (I promise :-). Copying between a svn and git workspace is really painful :-(
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER_28.patch, AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira
[jira] [Updated] (AMBER-28) OAuthAccessResourceRequest and
extractors using old version of spec to find access token
Posted by "Raymond Feng (Updated) (JIRA)" <ji...@apache.org>.
[ https://issues.apache.org/jira/browse/AMBER-28?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Raymond Feng updated AMBER-28:
------------------------------
Attachment: AMBER_28.patch
The revised patch that fixes a minor issue
> OAuthAccessResourceRequest and extractors using old version of spec to find access token
> ----------------------------------------------------------------------------------------
>
> Key: AMBER-28
> URL: https://issues.apache.org/jira/browse/AMBER-28
> Project: Amber
> Issue Type: Bug
> Components: OAuth 2.0 - Authorization Server, OAuth 2.0 - Resource Server, Parent
> Affects Versions: 1.0
> Reporter: Ed Anuff
> Assignee: Antonio Sanso
> Attachments: AMBER_28.patch, AMBER_28.patch
>
>
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.2
> http://tools.ietf.org/html/draft-ietf-oauth-v2-bearer-08#section-2.3
> The extractors are still looking for the access token in "oauth_token" parameter rather than in "access_token".
--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira