Details
-
Improvement
-
Status: Closed
-
Major
-
Resolution: Fixed
-
None
-
None
-
Unknown
Description
CXF already ships DefaultEncryptingOAuthProvider which can be used by the servers to avoid storing the OAuth2 model, it uses a custom seriallization format. It makes sense to offer a provider which uses a JWT token as a properties container before encrypting it.