Uploaded image for project: 'OpenAM'
  1. OpenAM
  2. OPENAM-9630

Oauth2 authorise endpoint not encoding goto url causing query params to be lost

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Duplicate
    • Affects Version/s: None
    • Fix Version/s: None
    • Component/s: None
    • Labels:
    • Sprint:
      113 -"Dhole"- Team Tesla

      Description

      When hitting the authorise endpoint with:

      rich.example.com:8080/openam/oauth2/authorize?response_type=code&client_id=myClient&scope=mail&redirect_uri=http%3A%2F%2Fexample.com&nonce=12345&state=3445&acr_values=google

      The acr value maps the authentication to an auth chain, with a goto param indicating where it should return. This goto url isn't currently being encoded, meaning that the url params are lost.

        Attachments

          Issue Links

            Activity

              People

              • Assignee:
                rich.riley Rich Riley [X] (Inactive)
                Reporter:
                rich.riley Rich Riley [X] (Inactive)
              • Votes:
                0 Vote for this issue
                Watchers:
                1 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved: