Details
-
Bug
-
Status: Closed
-
Major
-
Resolution: Fixed
-
3.4.1
-
None
-
None
-
Unknown
Description
Currently starting an authorization_code flow requires an UserContext because of org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService#getAndValidateSecurityContext but if it is required then you can never login (until you use 2 auth methods).