Stateless Authorization Handler Issue in 1.6.26
Since updating to 1.6.26 for an application, the functionality of handling authorization code redirect changed. (previously used version 1.6.10) Please provide description on new behaviour and guidance on migrating to this new functionality.
could you please provide more info like the error loggin?
@soaapp I don't remember we made any change in the 1.6.x as it is a maintained branch. If there are any changes, it would be a security fix. Would you be able to compare the two tags and let us know what has been changed?
I think it was narrowed down to this commit: https://github.com/networknt/light-spa-4j/commit/49d3eceb0da9135014270d6c0260d3ed18c9b9a8 where it changed the response behaviour from going to the redirect uri to returning a JSON payload including the redirect uri among other things.
@adbatesonwork The change should only be limited to the 2.x branch. If 1.6.x is changed, we should roll it back. Could you please open a PR to get it updated? Thanks.