[CXF-3967] OAuth Tokens need to be able to keep the end-user name used to authorize the client request - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 2.5
Fix Version/s: 2.5.1
Component/s: JAX-RS
Labels:
None

Estimated Complexity:
Unknown

Description

Glen helped to identify a limitation to do with OAuth tokens not being able to provide a hint re which end user authorized a client request. This makes it tricky to avoid writing OAuth apps where the end user does not wish to share the same login name between third-party services and resource servers

Attachments

Activity

People

Assignee:: Sergey Beryozkin

Reporter:: Sergey Beryozkin

Votes:: 0 Vote for this issue

Watchers:: 0 Start watching this issue

Dates

Created:: 09/Dec/11 13:21

Updated:: 19/Dec/11 16:15

Resolved:: 09/Dec/11 13:39