vertx-auth icon indicating copy to clipboard operation
vertx-auth copied to clipboard
verified publisher icon eclipse-vertx

OAuth2ClientOptons.isUseBasicAuthorizationHeader is ignored now

Open sberyozkin opened this issue 6 years ago • 1 comments

Version

3.8.5

Context

Quarkus user works with the OIDC server which does not recognize the Basic Auth header and as such the token acquisition request fails.

It has changed in 3.8.5 as part of this merge. It contained a good fix in that the authentication info was not duplicated in both the Authorization header and the form params, but unfortunately the option to authenticate via the form params has been lost.

The form parameter based authentication should still be supported if the basic authorization header is disabled. Thanks. Hi Paulo, @pmlopes. please do a minor fix for 3.8.6 :-)

sberyozkin avatar Jan 23 '20 14:01 sberyozkin

Hi Paulo, it may be not critical if the user confirms their OIDC server can accept Basic auth, which is a good news, hopefully, but yeah, a minor fix for 3.8.6 would not harm anyway :-) as there could be a number of legacy (or otherwise not supporting the basic auth) servers

sberyozkin avatar Jan 23 '20 15:01 sberyozkin