[NIFI-6038] OIDC TokenRequest fails with some OAuth2 providers - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Bug
Status: Resolved
Priority: Major
Resolution: Fixed
Affects Version/s: 1.8.0
Fix Version/s: 1.9.0
Component/s: Core Framework
Labels:
None

Description

I tried to integrate NiFi with a third party OAuth2 provider using OIDC, and I encountered problems. In particular I was working with ForgeRock Access Manager (AM) (AM OIDC Guide). ForgeRock AM complains that the Access Token Request sent by NiFi incorrectly contains a scope parameter. Apparently it decides not to ignore the extra parameter and fails instead.

The RFC-6749 and OAuth2 documentation doesn't mention using a scope parameter in the Access Token Request.

Attachments

Issue Links

links to

GitHub Pull Request #3308

Activity

People

Assignee:: Michael W Moser

Reporter:: Michael W Moser

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Dates

Created:: 14/Feb/19 19:12

Updated:: 14/Feb/19 21:44

Resolved:: 14/Feb/19 21:44

Time Tracking

Estimated:

Not Specified

Remaining:

Logged: