Hi, The AuthorizationCodeGrantService must have a way of identifying the end-user. The tests in CXF configure it with a basic authentication filter, for example:
https://github.com/apache/cxf/blob/master/systests/rs-security/src/test/resources/org/apache/cxf/systest/jaxrs/security/oauth2/grants/grants-server.xml Please note that CXF does not ship an "out of the box" OAuth 2.0 service. Instead it has all of the classes required to implement it. However, you would still need to write the user-interface for it. So in this case, configure CXF to return a form to authenticate the user, etc. Colm. On Thu, Jul 19, 2018 at 10:13 AM, [email protected] <[email protected]> wrote: > Hi, > > I am using the AuthorizationCodeGrantService but when I call > "/authorize?response_type=code&scope=public&client_id= > q4PuwiPH6nhj5A&redirect_uri=http://test.fr"; I see the request reaching > the code but then I get a 401 because the code looks for > "securityContext.getUserPrincipal()". > > > do I have to setup a filter before? > do i have to link this filter with another LDAP or the authorizaiton > service? > > as far as I understood I was supposed to be redirected to a login form or > I can also provide clientId:clientSecret B64 as basic authentication > but I don't get how to setup the whole thing > > can you help on this topic? > > thanks, > > -- Colm O hEigeartaigh Talend Community Coder http://coders.talend.com
