[
https://issues.apache.org/jira/browse/KNOX-3179?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=18013447#comment-18013447
]
ASF subversion and git services commented on KNOX-3179:
-------------------------------------------------------
Commit 0068c63b75fc688c80010deb6743a82b15a20fd2 in knox's branch
refs/heads/master from hanicz
[ https://gitbox.apache.org/repos/asf?p=knox.git;h=0068c63b7 ]
KNOX-3179: Moved client id validation into client secret parse, Modify
getParameter in UrlEncodedFormRequest (#1074)
* KNOX-3179: Moved client id validation into client secret parse, Modify
getParameter in UrlEncodedFormRequest
* KNOX-3179: New test for UrlEncodedFormRequest getParameter
* KNOX-3179: Use existing mismatch message
> Client credential flow reads null parameters from request
> ---------------------------------------------------------
>
> Key: KNOX-3179
> URL: https://issues.apache.org/jira/browse/KNOX-3179
> Project: Apache Knox
> Issue Type: Bug
> Components: Server
> Affects Versions: 2.1.0
> Reporter: Tamás Hanicz
> Assignee: Tamás Hanicz
> Priority: Critical
> Time Spent: 10m
> Remaining Estimate: 0h
>
> [KNOX-3175|https://issues.apache.org/jira/projects/KNOX/issues/KNOX-3175]
> changed the way the client credential flow reads payload data from
> x-www-form-urlencoded requests. However these request are already cast to
> UrlEncodedFormRequest where the getParameter method is overridden and the
> payload is ignored, parameters only read from the query params.
>
> {code:java}
> @Override
> public String getParameter(String name) {
> return queryParams.getValue(name, 0);
> } {code}
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
