首页 发现 帮助
注册 登录
github
/
spring-authorization-server
镜像自地址 https://github.com/spring-projects/spring-authorization-server
2
0
派生 0
文件 工单管理 0 Wiki
浏览代码

Use OAuth2ErrorCodes.INVALID_REDIRECT_URI

Closes gh-727
Joe Grandja 3 年之前
父节点
6470c71e77
当前提交
30c17a5e49
共有 2 个文件被更改,包括 3 次插入4 次删除
分列视图 显示文件统计
  1. 1 2
      oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/oidc/authentication/OidcClientRegistrationAuthenticationProvider.java
  2. 2 2
      oauth2-authorization-server/src/test/java/org/springframework/security/oauth2/server/authorization/oidc/authentication/OidcClientRegistrationAuthenticationProviderTests.java

+ 1 - 2
oauth2-authorization-server/src/main/java/org/springframework/security/oauth2/server/authorization/oidc/authentication/OidcClientRegistrationAuthenticationProvider.java
查看文件 

@@ -222,8 +222,7 @@ public final class OidcClientRegistrationAuthenticationProvider implements Authe
 
 		checkScopeForRegistration(authorizedAccessToken);
 
 
 		if (!isValidRedirectUris(clientRegistrationAuthentication.getClientRegistration().getRedirectUris())) {
 
-			// TODO Add OAuth2ErrorCodes.INVALID_REDIRECT_URI
 
-			throwInvalidClientRegistration("invalid_redirect_uri", OidcClientMetadataClaimNames.REDIRECT_URIS);
 
+			throwInvalidClientRegistration(OAuth2ErrorCodes.INVALID_REDIRECT_URI, OidcClientMetadataClaimNames.REDIRECT_URIS);
 
 		}
 
 
 		if (!isValidTokenEndpointAuthenticationMethod(clientRegistrationAuthentication.getClientRegistration())) {

+ 2 - 2
oauth2-authorization-server/src/test/java/org/springframework/security/oauth2/server/authorization/oidc/authentication/OidcClientRegistrationAuthenticationProviderTests.java
查看文件 

@@ -318,7 +318,7 @@ public class OidcClientRegistrationAuthenticationProviderTests {
 
 				.isInstanceOf(OAuth2AuthenticationException.class)
 
 				.extracting(ex -> ((OAuth2AuthenticationException) ex).getError())
 
 				.satisfies(error -> {
 
-					assertThat(error.getErrorCode()).isEqualTo("invalid_redirect_uri");
 
+					assertThat(error.getErrorCode()).isEqualTo(OAuth2ErrorCodes.INVALID_REDIRECT_URI);
 
 					assertThat(error.getDescription()).contains(OidcClientMetadataClaimNames.REDIRECT_URIS);
 
 				});
 
 		verify(this.authorizationService).findByToken(
 
@@ -353,7 +353,7 @@ public class OidcClientRegistrationAuthenticationProviderTests {
 
 				.isInstanceOf(OAuth2AuthenticationException.class)
 
 				.extracting(ex -> ((OAuth2AuthenticationException) ex).getError())
 
 				.satisfies(error -> {
 
-					assertThat(error.getErrorCode()).isEqualTo("invalid_redirect_uri");
 
+					assertThat(error.getErrorCode()).isEqualTo(OAuth2ErrorCodes.INVALID_REDIRECT_URI);
 
 					assertThat(error.getDescription()).contains(OidcClientMetadataClaimNames.REDIRECT_URIS);
 
 				});
 
 		verify(this.authorizationService).findByToken(