Skip to content

AuthorizationCodeAuthenticationProcessingFilter -> favor query request matching #4576

New issue
New issue
Closed
Closed
AuthorizationCodeAuthenticationProcessingFilter -> favor query request matching#4576
Assignees
jgrandja
Labels
in: oauth2An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
Milestone
5.0.0.M5
@jgrandja

Description

@jgrandja
jgrandja
opened on Sep 26, 2017

The current RequestMatcher for AuthorizationCodeAuthenticationProcessingFilter uses path matching, for example: /oauth2/authorize/code/{clientAlias}

It might make more sense to use query parameter matching instead. This would potentially allow the user to reuse the redirect-uri for 2 or more ClientRegistration configured with the same clientId.

GitHub only supports setting 1 redirect-uri per client. With the current setup this poses an issue when configuring 2 or more GitHub ClientRegistration's with the same clientId

Metadata

Metadata

Assignees

Labels

in: oauth2An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions