Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Provide meaningful error when invalid client-authentication-method is provided #13144

Closed
rwinch opened this issue May 8, 2023 · 0 comments
Closed

Provide meaningful error when invalid client-authentication-method is provided #13144

rwinch opened this issue May 8, 2023 · 0 comments
Assignees
@jzheaux
Labels
in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug

Comments

@rwinch
Copy link
Member

rwinch commented May 8, 2023

If an invalid client-authentication-method is configured (eg "basic"), then the authorization code request is made with no credentials which makes troubleshooting more difficult. Instead, a meaningful error message should be provided on the client if the client-authentication-method is invalid.
@rwinch rwinch added status: waiting-for-triage An issue we've not yet triaged type: bug A general bug labels May 8, 2023
@jzheaux jzheaux self-assigned this May 23, 2023
@jzheaux jzheaux added the in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) label May 23, 2023
@jzheaux jzheaux removed the status: waiting-for-triage An issue we've not yet triaged label May 23, 2023
@jzheaux jzheaux mentioned this issue May 26, 2023
Merged
@jgrandja jgrandja moved this to Planning in Spring Security Team May 28, 2023
@jgrandja jgrandja moved this from Planning to Prioritized in Spring Security Team May 28, 2023
@jzheaux jzheaux removed the status in Spring Security Team May 30, 2023
jzheaux added a commit to jzheaux/spring-security that referenced this issue Jun 12, 2023
@jzheaux
Error On Unsupported Client Authentication Methods
38fcb43 
Closes spring-projectsgh-13144
@jzheaux jzheaux mentioned this issue Jun 12, 2023
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jzheaux jzheaux

Labels
in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
Projects
Spring Security Team
Status: Done
Milestone
No milestone
Development

No branches or pull requests
2 participants
@rwinch @jzheaux