Skip to content

Fix client credentials overriding getSubjectIdentifier #208

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Closed
wants to merge 1 commit into from
Closed

Fix client credentials overriding getSubjectIdentifier #208

wants to merge 1 commit into from

Conversation

@ajgarlag
Copy link
Contributor

@ajgarlag ajgarlag commented Jan 21, 2025
edited
Loading

In league/server-bundle version 0.8, when the client_credentials
grant is used, the sub claim of the JWT is an empty string, but in
version 0.9 is filled with the client ID.

We override the getSubjectIdentifier of the AccessToken entity to
return an empty string again when the client_credentials grant is used.

Fix #207

@ajgarlag
Fix client credentials
017ad9d 
In `league/server-bundle` version `0.8`, when the client_credentials
grant is used, the `sub` claim of the JWT is an empty string, but in
version `0.9` is filled with the client ID.

We override the `getSubjectIdentifier` of the AccessToken entity to
return an empty string again when the client_credentials grant is used.
@ajgarlag ajgarlag force-pushed the fix-client-credentials-1 branch from f1a1bda to 017ad9d Compare January 21, 2025 08:59
@ajgarlag ajgarlag changed the title Fix client credentials Fix client credentials overriding getSubjectIdentifier Jan 21, 2025
@ajgarlag ajgarlag mentioned this pull request Jan 21, 2025
Closed
@chalasr
Copy link
Member

chalasr commented Feb 1, 2025

Closing in favor of #209

@chalasr chalasr closed this Feb 1, 2025
@ajgarlag ajgarlag deleted the fix-client-credentials-1 branch March 13, 2025 13:56
@ajgarlag ajgarlag mentioned this pull request Mar 19, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

No reviews

Assignees

No one assigned

Labels

None yet

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

Apis with client_credentilas token: bad credentials response.

2 participants

@ajgarlag @chalasr