light-codegen icon indicating copy to clipboard operation
light-codegen copied to clipboard
verified publisher icon networknt

Stateless Authorization Handler Issue in 1.6.26

Open soaapp opened this issue 4 years ago • 4 comments

Since updating to 1.6.26 for an application, the functionality of handling authorization code redirect changed. (previously used version 1.6.10) Please provide description on new behaviour and guidance on migrating to this new functionality.

soaapp avatar Apr 07 '21 19:04 soaapp

could you please provide more info like the error loggin?

BalloonWen avatar Apr 08 '21 20:04 BalloonWen

@soaapp I don't remember we made any change in the 1.6.x as it is a maintained branch. If there are any changes, it would be a security fix. Would you be able to compare the two tags and let us know what has been changed?

stevehu avatar Apr 08 '21 23:04 stevehu

I think it was narrowed down to this commit: https://github.com/networknt/light-spa-4j/commit/49d3eceb0da9135014270d6c0260d3ed18c9b9a8 where it changed the response behaviour from going to the redirect uri to returning a JSON payload including the redirect uri among other things.

adbatesonwork avatar Apr 09 '21 18:04 adbatesonwork

@adbatesonwork The change should only be limited to the 2.x branch. If 1.6.x is changed, we should roll it back. Could you please open a PR to get it updated? Thanks.

stevehu avatar Apr 09 '21 21:04 stevehu