You are viewing a plain text version of this content. The canonical link for it is here.

Posted to dev@oltu.apache.org by "Keisuke Kato (JIRA)" <ji...@apache.org> on 2018/01/11 10:40:00 UTC

[jira] [Created] (OLTU-218) Let's set the error code to RFC 6750

Keisuke Kato created OLTU-218:
---------------------------------

             Summary: Let's set the error code to RFC 6750
                 Key: OLTU-218
                 URL: https://issues.apache.org/jira/browse/OLTU-218
             Project: Apache Oltu
          Issue Type: Improvement
          Components: oauth2-resourceserver
    Affects Versions: oauth2-1.0.2
            Reporter: Keisuke Kato
            Priority: Minor


According to [RFC 6750 - 3.1. Error Codes|https://tools.ietf.org/html/rfc6750#section-3.1], the following errors should be improved to it, I think. What do you think?

||Request||Response Status Code Actual||Expected||Response Body Actual||Expected||
|Missing authorization header|400|400|{"WWW-Authenticate":"Bearer error_description=\"Missing authorization header.\""}|{"WWW-Authenticate":"Bearer error_description=\"Missing authorization header.\"{color:red},error=\"invalid_request\"{color}"}|
|Incorrect authorization method|400|400|{"WWW-Authenticate":"Bearer error_description=\"Incorrect authorization method.\""}|{"WWW-Authenticate":"Bearer error_description=\"Incorrect authorization method.\"{color:red},error=\"invalid_request\"{color}"}|
|Invalid token|400|{color:red}401{color}|{"WWW-Authenticate":"Bearer error=\"invalid_token\""}|{"WWW-Authenticate":"Bearer error=\"invalid_token\""}|

Thanks



--
This message was sent by Atlassian JIRA
(v6.4.14#64029)