Public

Project privacy set to public. By default, its content is available to everyone (authenticated or not). Please note that more restrictive permissions might exist on some items.

stable

Clone or download

Read-only

Remove duplicate for the list of scopes given for the authorization request

Download Browse

If for whatever reasons the client requests multiple times the same scope, the scope should be displayed only once. To test: 1. In the project admin create an OAuth2 app (note the ID) 2. Access the authorize page at the URL https://tuleap.example.com/oauth2/authorize?client_id=<client_id>&scope=project:read%20project:read&response_type=code&redirect_uri=<redirect_uri> 3. The project:read scope be displayed only once Part of story #14542: have OAuth2 flow Change-Id: I812ad8f106af34746c61f85696855a7fc1da2571

+19 −2
Thomas Gerbet (tgerbet) 2020-03-24 14:59
Thomas Gerbet (tgerbet) 2020-03-24 14:59
bf780ebebb9517c8402fc0803a77185c9a70dd18
ba11e3a53ce4a5d82dd7d9006d282f3c82386b67
git #tuleap/stable/bf780ebebb9517c8402fc0803a77185c9a70dd18

Modified Files

Side by side diff
Inline diff
Name
M plugins/oauth2_server/include/AuthorizationServer/AuthorizationEndpointPostController.php +1 −1 Go to diff View file
M plugins/oauth2_server/include/AuthorizationServer/ScopeExtractor.php +1 −0 Go to diff View file
M plugins/oauth2_server/phpunit/AuthorizationServer/AuthorizationEndpointPostControllerTest.php +2 −1 Go to diff View file
M plugins/oauth2_server/phpunit/AuthorizationServer/ScopeExtractorTest.php +15 −0 Go to diff View file