Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Set the WWW-Authenticate header when the access to an OAuth2 protected resource is denied

Download Browse

The specification about the usage of a bearer token make it mandatory [0]. To ease potential debugging sessions, accurate error codes with a description when possible has been added [1]. This is part of story #14542: have OAuth2 flow [0] https://tools.ietf.org/html/rfc6750#section-3 [1] https://tools.ietf.org/html/rfc6750#section-3.1 Change-Id: Id5be658731030501df45f9faf82ab4cff1afab42

+47 −6
Thomas Gerbet (tgerbet) 2020-02-17 16:15
Thomas Gerbet (tgerbet) 2020-02-17 16:15
57f2131eaea2ace41bdf8dc81dd0f0774c1e2ad5
4cf4d4b4ffcd6faaa659b7e2cfa8a2991d02e128
git #tuleap/stable/57f2131eaea2ace41bdf8dc81dd0f0774c1e2ad5

Modified Files

Side by side diff
Inline diff
Name
M src/common/User/OAuth2/ResourceServer/OAuth2ResourceServerMiddleware.php +21 −4 Go to diff View file
M tests/phpunit/common/User/OAuth2/ResourceServer/OAuth2ResourceServerMiddlewareTest.php +26 −2 Go to diff View file