Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Reject authorization requests with unsupported OIDC parameters

Download Browse

Some of the features exposed by OIDC are not supported, per the specification [0] requests trying to use them should be rejected. To test, try to do a authorization request with one of the unsupported parameter. Part of story #14714: be an OpenID Connect provider [0] https://openid.net/specs/openid-connect-core-1_0.html#AuthError Change-Id: I85167dfce34f22adc80c5e76d57fe8dcbf641a75

+48 −8
Thomas Gerbet (tgerbet) 2020-04-15 14:53
Thomas Gerbet (tgerbet) 2020-04-15 16:41
a8aeb64ba9a92104edf49644b21242b2b71a88f8
ead6888c59949a565bc8942ca34e31705d47bdca
git #tuleap/stable/a8aeb64ba9a92104edf49644b21242b2b71a88f8

Modified Files

Side by side diff
Inline diff
Name
M plugins/oauth2_server/include/AuthorizationServer/AuthorizationEndpointController.php +30 −2 Go to diff View file
M plugins/oauth2_server/phpunit/AuthorizationServer/AuthorizationEndpointControllerTest.php +18 −6 Go to diff View file