Uploaded image for project: 'Nuxeo Platform'
  1. Nuxeo Platform
  2. NXP-23825

User should not be asked for grant authorization if already done

    Details

    • Type: Bug
    • Status: Resolved
    • Priority: Major
    • Resolution: Fixed
    • Affects Version/s: None
    • Fix Version/s: 9.10
    • Component/s: OAuth
    • Backlog priority:
      1,000
    • Upgrade notes:
      Hide

      Users need to authorize an application to access Nuxeo through OAuth2 only once.
      Moreover, if the OAuth2 client is configured on the server with "Auto-grant", users never need to authorize this client, thus bypassing completely the OAuth2 grant page.

      Show
      Users need to authorize an application to access Nuxeo through OAuth2 only once. Moreover, if the OAuth2 client is configured on the server with "Auto-grant", users never need to authorize this client, thus bypassing completely the OAuth2 grant page.
    • Sprint:
      nxfit 9.10.1, nxfit 9.10.2
    • Story Points:
      5

      Description

      Each time a user uses the OAuth2 authorization for the same application, Nuxeo always asks him for grant authorization. If the user already grants the authorization, Nuxeo should not ask him again while there is a valid token Nuxeo side.

      Moreover, the administrator should be able to set an "auto-grant" flag when registering an OAuth2 client to completely avoid the grant access process: this makes sense for the Nuxeo Mobile application for instance.

        Attachments

          Issue Links

            Activity

              People

              • Votes:
                0 Vote for this issue
                Watchers:
                3 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:

                  Time Tracking

                  Estimated:
                  Original Estimate - 0 minutes
                  0m
                  Remaining:
                  Remaining Estimate - 0 minutes
                  0m
                  Logged:
                  Time Spent - 2 days, 2 hours
                  2d 2h

                    PagerDuty

                    Error rendering 'com.pagerduty.jira-server-plugin:PagerDuty'. Please contact your Jira administrators.