[jira] [Updated] (SHINDIG-1839) Improve Token Refresh and various OAuth2 improvements

Tue, 07 Aug 2012 10:12:12 -0700 

     [ 
https://issues.apache.org/jira/browse/SHINDIG-1839?page=com.atlassian.jira.plugin.system.issuetabpanels:all-tabpanel
 ]

Adam Clarke updated SHINDIG-1839:
---------------------------------

    Description: 
Testing has uncovered more OAuth2 bugs in Token refresh and various 
improvements we'd like to contribute back.

Applied formatting and Checkstyle fixes to all changed files.
MapCache inconsistent null checks for storing Collections.
update OAuth2Persister javadoc to clarify what findClient() should return.
BasicOAuth2Store improve removeToken() logic, from Brian Lillie.
Refreshing Token does not include originator info.
Improve information propagated through OAuth2RequestException.
More complete filtering of server information when sendTraceToClient is 
disabled.
Log when an invalid or error OAuth2Accessor is used for redirect.
Limit concurrent refreshes to 1, syncrhonizing on interned accessor string.
Refresh token is not properly removed on provider error.
Allow clearing of accessor cache on OAuth2Store.

  was:Testing has uncovered more OAuth2 bugs in Token refresh and various 
improvements we'd like to contribute back.

    
> Improve Token Refresh and various OAuth2 improvements
> -----------------------------------------------------
>
>                 Key: SHINDIG-1839
>                 URL: https://issues.apache.org/jira/browse/SHINDIG-1839
>             Project: Shindig
>          Issue Type: Bug
>          Components: Java
>    Affects Versions: 2.5.0-beta3
>            Reporter: Adam Clarke
>            Assignee: Adam Clarke
>             Fix For: 2.5.0-beta4
>
>
> Testing has uncovered more OAuth2 bugs in Token refresh and various 
> improvements we'd like to contribute back.
> Applied formatting and Checkstyle fixes to all changed files.
> MapCache inconsistent null checks for storing Collections.
> update OAuth2Persister javadoc to clarify what findClient() should return.
> BasicOAuth2Store improve removeToken() logic, from Brian Lillie.
> Refreshing Token does not include originator info.
> Improve information propagated through OAuth2RequestException.
> More complete filtering of server information when sendTraceToClient is 
> disabled.
> Log when an invalid or error OAuth2Accessor is used for redirect.
> Limit concurrent refreshes to 1, syncrhonizing on interned accessor string.
> Refresh token is not properly removed on provider error.
> Allow clearing of accessor cache on OAuth2Store.

--
This message is automatically generated by JIRA.
If you think it was sent incorrectly, please contact your JIRA administrators: 
https://issues.apache.org/jira/secure/ContactAdministrators!default.jspa
For more information on JIRA, see: http://www.atlassian.com/software/jira

Reply via email to