You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@oltu.apache.org by "Stein Welberg (JIRA)" <ji...@apache.org> on 2016/02/23 09:19:18 UTC
[jira] [Resolved] (OLTU-109) OAuthTokenRequest unnecessarily
requires the "redirect_uri" parameter
[ https://issues.apache.org/jira/browse/OLTU-109?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel ]
Stein Welberg resolved OLTU-109.
--------------------------------
Resolution: Won't Fix
Resolution is marked as won't fix due to the afore mentioned comments.
> OAuthTokenRequest unnecessarily requires the "redirect_uri" parameter
> ---------------------------------------------------------------------
>
> Key: OLTU-109
> URL: https://issues.apache.org/jira/browse/OLTU-109
> Project: Apache Oltu
> Issue Type: Bug
> Components: oauth2-authzserver
> Affects Versions: oauth2-0.22
> Environment: Authorization Server
> Reporter: John Jenkins
> Fix For: oauth2-0.31
>
>
> The OAuthTokenRequest(HttpServletRequest) constructor will inappropriately fail if the "redirect_uri" parameter is missing. This is only required if the "redirect_uri" was given in the previous, "code" request. From the specification (section 4.1.3):
> redirect_uri
> REQUIRED, if the "redirect_uri" parameter was included in the
> authorization request as described in Section 4.1.1, and their
> values MUST be identical.
--
This message was sent by Atlassian JIRA
(v6.3.4#6332)