Author: sergeyb
Date: Wed Nov 28 14:08:28 2012
New Revision: 1414699
URL: http://svn.apache.org/viewvc?rev=1414699&view=rev
Log:
Updating the client cred grant to use the clients subject as the resource owner
subject
Modified:
cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/clientcred/ClientCredentialsGrantHandler.java
Modified:
cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/clientcred/ClientCredentialsGrantHandler.java
URL:
http://svn.apache.org/viewvc/cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/clientcred/ClientCredentialsGrantHandler.java?rev=1414699&r1=1414698&r2=1414699&view=diff
==============================================================================
---
cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/clientcred/ClientCredentialsGrantHandler.java
(original)
+++
cxf/trunk/rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/grants/clientcred/ClientCredentialsGrantHandler.java
Wed Nov 28 14:08:28 2012
@@ -41,10 +41,8 @@ public class ClientCredentialsGrantHandl
throws OAuthServiceException {
checkIfGrantSupported(client);
- // the OAuth filter will use Client.getUserSubject()
- // to initialize the request security context
return doCreateAccessToken(client,
- null,
+ client.getSubject(),
OAuthUtils.parseScope(params.getFirst(OAuthConstants.SCOPE)));
}
