Hi, I have some concerns regarding JIRA issue [1]
If client credentials are unavailable, is it ok to skip client authentication process in issue() method (org.wso2.carbon.identity.oauth2.token.AccessTokenIssuer) for SAML2 bearer type ? Also should we give an option for user to select whether client credentials are optional or not? And fail authentication if no credentials are available and user says it's mandatory? [1] https://wso2.org/jira/browse/IDENTITY-3028 -- Best Regards, Nuwandi Wickramasinghe Software Engineer WSO2 Inc. Web : http://wso2.com Mobile : 0719214873
_______________________________________________ Dev mailing list Dev@wso2.org http://wso2.org/cgi-bin/mailman/listinfo/dev