Details

    • Type: New Feature
    • Status: Resolved
    • Priority: Major
    • Resolution: Deferred
    • Affects Version/s: 1.0.0.RC2
    • Fix Version/s: None
    • Component/s: OAuth 2

      Description

      Currently, oAuth clients (e.g.tonr2) work with a local user DB (username+password). However, sometimes the scenario is that the client has no users DB of its own and it relies on the oAuth-provider for that. So technically the client uses "AnonymousAuthenticationToken", and then when OAuth2RestTemplate tries to obtain the token (in AccessTokenProviderChain.obtainAccessToken()), it fails, and then check if the token is of type "anonymous". If so it throws InsufficientAuthenticationException (and not UserRedirectRequiredException), so the client never gets redirected to get a token.

        Attachments

          Activity

            People

            • Assignee:
              david_syer Dave Syer
              Reporter:
              ohadr ohad redlich
            • Votes:
              2 Vote for this issue
              Watchers:
              4 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:

                Time Tracking

                Estimated:
                Original Estimate - 3d
                3d
                Remaining:
                Remaining Estimate - 3d
                3d
                Logged:
                Time Spent - Not Specified
                Not Specified