Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
fix: exclude unsupported response types in exception (#2329)
* fix: exclude unsupported response types in exception - avoid logging or echoing unsantized input from the request - this mirrors the change made to AuthorizationEndpoint in spring-security-oauth2 2.5.2.RELEASE, see: spring-attic/spring-security-oauth@2b58aaf Change-Id: Id93034bc69355fcf988c56827fa65c70338694cf * fix: allow bearer or Bearer for Authentication header - apparently the whitespace is being trimmed off by spring in the xml so the request matcher isn't doing a case insensitive comparison when the header value is Bearer Change-Id: I0f93cc2a0ebf364560687c4e57887a100753dd2d
- Loading branch information