You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
I'm using OAuth2 implicit flow and there's an issue when I set clientSecret to null :
the URL generated from swagger js for starting the OAuth2 authentication flow contains an undefined client_id (on serverside, clientId is not empty).
I'm using OAuth2 implicit flow and there's an issue when I set clientSecret to null :
the URL generated from swagger js for starting the OAuth2 authentication flow contains an undefined client_id (on serverside, clientId is not empty).
Sample URL :
http://localhost:9080/oidc/idp/authorize?response_type=token&redirect_uri=http%3A%2F%2Flocalhost%3A7777%2Fwebjars%2Fspringfox-swagger-ui%2Fo2c.html&realm=undefined&client_id=undefined&scope=openid&state=oauth2
The issue appears to be in https://github.com/springfox/springfox/blob/2.6.1/springfox-swagger-ui/src/web/js/springfox.js#L71 : OAuth2 is initialized only if clientSecret is set.
What version of the library are you using? 2.6.0 (but the LOC in question is also in 2.6.1)
Thanks,
Adrian
Additional resources
Here's the JSON returned from /swagger-resources/configuration/security :
Here's a fragment from my Spring Boot Config (the important thing being the SecurityConfiguration : clientSecret is set to null in the constructor):
The text was updated successfully, but these errors were encountered: