[NXP-22717] Match RFC recommandations about OAuth2 response errors and log these errors - Nuxeo Issue Tracker

XML

Word

Printable

Release Notes Description:
Hide

Error responses happening during the OAuth flow have been improved so as to stick to the RFC:

Authorization response: https://tools.ietf.org/html/rfc6749#section-4.1.2.1

Access token response: https://tools.ietf.org/html/rfc6749#section-5.2
Errors are also logged server-side.
Show
Error responses happening during the OAuth flow have been improved so as to stick to the RFC: Authorization response: https://tools.ietf.org/html/rfc6749#section-4.1.2.1 Access token response: https://tools.ietf.org/html/rfc6749#section-5.2 Errors are also logged server-side.
Epic Link:
OAuth2
Tags:
- dev-2017-sprints-h2-93
- nxfit
Sprint:
nxfit 9.3.1
Story Points:
3

Let's be consistent with the error responses described by the OAuth 2.0 Authorization Framework RFC:

Also, log these errors server-side to keep track of them and allow better investigation of randomly failing unit tests.

is required by

NXP-22734 Fix randomly failing OAuth2ChallengeFixture#tokenShouldValidatePKCE

Estimated:

Remaining:

Logged: