Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-5332

Update OAuth2 RefreshTokenServerResource to check the clientID case insensitively

    Details

    • Sprint:
      Sprint 76 - Sustaining
    • Support Ticket IDs:

      Description

      1. create "OAuth 2.0 Client" called "TestOAuth2Agent"
      2. configure OAuth2
      3. run the following grant_type=password command. it will return error

       curl --request POST --data "client_id=testoauth2agent&client_secret=cangetin&grant_type=password&username=testuser01&password=cangetin" http://openam.example.com:18080/opensso/oauth2/access_token 
      
      curl --request POST --data "grant_type=refresh_token&refresh_token=xxxx" http://openam.example.com:18080/opensso/oauth2/access_token 
      

      4. restart OpenAM server
      5. run the same command in step 3. it will succeed

      OAuth2 clients are agent account and OpenAM stores configuration in non-case sensitive way since LDAP is case insensitive. Therefore, RefreshTokenServerResource shouldn't check clientID in case sensitive way.

        Attachments

          Activity

            People

            • Assignee:
              sachiko Sachiko Wallace
              Reporter:
              sachiko Sachiko Wallace
              QA Assignee:
              Garyl Erickson
            • Votes:
              1 Vote for this issue
              Watchers:
              2 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: