Uploaded image for project: 'Spring Social'
  1. Spring Social
  2. SOCIAL-358

Handle error callbacks, per section 4.1.2.1 of the OAuth 2 specification

    Details

    • Type: Improvement
    • Status: Resolved
    • Priority: Minor
    • Resolution: Complete
    • Affects Version/s: None
    • Fix Version/s: 1.1.0.M3, 1.1.0.RELEASE
    • Component/s: None
    • Labels:
      None

      Description

      Per section 4.1.2.1 of the OAuth 2 specification, when a resource owner declines authorization to the client, the provider should redirect back to the client with an error attribute with one of several values indicating the nature of the error. See http://tools.ietf.org/html/rfc6749#section-4.1.2.1.

      Spring Social's ConnectController, ProviderSignInController, and SocialAuthenticationFilter should handle this error attribute (as well as the other optional attributes defined in section 4.1.2.1). For the controllers, it should likely echo the error details in the model for the connection status view to give feedback to the user. For the filter, it should probably handle it in a way consistent with how a "Cancel" would be handled on any traditional signin page.

        Attachments

          Activity

            People

            • Assignee:
              habuma Craig Walls
              Reporter:
              habuma Craig Walls
            • Votes:
              0 Vote for this issue
              Watchers:
              1 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved: