[OPENAM-11565] Implicit grant flow is not generating an Ops token - ForgeRock JIRA

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 13.5.2, 14.1.1, 14.5.0, 14.5.1, 14.1.2
Fix Version/s: 13.5.2, 6.0.0, 14.1.2, 5.5.2
Component/s: oauth2, OpenID Connect
Labels:
- EDISON

Target Version/s:

13.5.2, 14.5.0, 14.1.2
Rank:
1|hzu17z:

Sprint:
AM Sustaining Sprint 41, AM Sustaining Sprint 42
Story Points:
2
Needs backport:

No

Support Ticket IDs:

Needs QA verification:

No
Functional tests:

Yes
Are the reproduction steps defined?:

Yes and I used the same an in the description

Description

Bug description

The ops claim, which link the original session to the id token, is not generated in the case of the implicit grant flow. Therefore, the endSession is not killing the original session, in the case of an id token generated by the implicit grant flow

How to reproduce the issue

enable "Store Ops Tokens"
Generate an id token via the implicit grant flow

Expected behaviour

The id token should contain the ops claim

Current behaviour

the ops claim is not present in the id token

Work around

There is none

Attachments

Issue Links

is caused by

OPENAM-10782 endSession with an id_token generated from a refresh_token request does not destroy the session

Resolved

is duplicated by

OPENAM-11559 ops tokens missing from implicit and resource owner flows

Closed

Activity

People

Assignee:

Quentin CASTEL [X] (Inactive)

Reporter:

Quentin CASTEL [X] (Inactive)

Votes:

1 Vote for this issue

Watchers:

8 Start watching this issue

Dates

Created:

16/Aug/17 10:49 AM

Updated:

29/Aug/19 3:18 AM

Resolved:

23/Jul/18 3:36 PM