You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
In DOT 2.x the client_secret is now stored hashed. Documentation (including warning text in the HTML template) was added for the admin UI but was missed for the documentation and non-admin UI endpoints as documented in getting_started
I've been spending couple hours debugging this as I expected it not to be so hard to solve 😵💫
And I found that in this ApplicationRegistration view we're not passing the help_texts parameter to the modelform_factory method, then I added it like this just for testing
But stills not getting the help text in the response, this time I lost the track at the rendering moment, seems like django.forms.widgets does not handle help_texts 🤔
Describe the bug
In DOT 2.x the client_secret is now stored hashed. Documentation (including warning text in the HTML template) was added for the admin UI but was missed for the documentation and non-admin UI endpoints as documented in getting_started
To Reproduce
Expected behavior
The user should be warned to copy the secret before save as is done at http://127.0.0.1:8000/admin/oauth2_provider/application/add/
Version
2.2.0
Additional context
See #1235 although that issue says the unhashed secret was used so the error may be unrelated.
The text was updated successfully, but these errors were encountered: