[OPENAM-15052] when id_token_hint is not JWT, CIBA authorization request returns HTTP 500 - ForgeRock JIRA

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 6.5.2, 7.0.0
Fix Version/s: 6.5.2.3, 7.0.0, 6.5.3
Component/s: oauth2
Labels:
- AME
- Must-Fix
- NEWTON

Target Version/s:

6.5.2.3, 7.0.0, 6.5.3

Sprint:
AM 2019.15 - Gears

Verified Version/s:

6.5.2.3
Functional tests:

Yes

Description

Bug description

when id_token_hint is not JWT, CIBA authorization request returns HTTP 500

When I use `id_token_hint` without JWT value, CIBA authorization request returns HTTP 500

not right number of dots, 1

When I use `id_token_hint` without JWT value, but with right number of dots, there is error HTTP 500

`Failed to parse json: Unrecognized token 'u': was expecting ('true', 'false' or 'null')\n at [Source: (String)\"u�\"; line: 1, column: 2]"`

How to reproduce the issue

follow steps in ~~OPENAM-15049~~ without D
create authentication tree "test" with nodes "Start" -> "Username collector" -> "Success"
configure OAuth2Provider, Advanced OpenId Connect, OpenID Connect acr_values to Auth Chain Mapping - add key=push value=test
change "login_hint":"demo" to "id_token_hint":"demo" or to "id_token_hint":"demo.demo.demo" in JWT, save encoded JWT to file
do request as in ~~OPENAM-15049~~ step C

Expected behaviour

HTTP 400 with incorrect JWT in id_token_hint message

Current behaviour

HTTP 500 with messages above

Attachments

Activity

People

Assignee:

Dipu Seminlal

Reporter:

Ľubomír Mlích

Votes:

0 Vote for this issue

Watchers:

5 Start watching this issue

Dates

Created:

07/Jun/19 9:22 AM

Updated:

04/Feb/20 10:36 AM

Resolved:

25/Oct/19 11:12 AM