Adapt to form data not adding charset if it is UTF-8 #15275
Assignees
Labels
in: oauth2
An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)
type: breaks-passivity
A change that breaks passivity with the previous release
Milestone
Comments
marcusdacoregio
added
type: enhancement
|
Closed via aa9c1ba |
|
If you are impacted by this issue, please consider adding a comment letting us know how you were impacted. This will help us understand if any environments are affected by removing The following is a workaround that can be applied to restore the @Configuration
@EnableWebFluxSecurity
public class SecurityConfiguration {
...
@Bean
public ReactiveOAuth2AccessTokenResponseClient<OAuth2AuthorizationCodeGrantRequest> authorizationCodeTokenResponseClient() {
var defaultHeadersConverter = new DefaultOAuth2TokenRequestHeadersConverter<OAuth2AuthorizationCodeGrantRequest>();
var headersConverter = defaultHeadersConverter
.andThen((headers) -> {
headers.setContentType(new MediaType(MediaType.APPLICATION_FORM_URLENCODED, StandardCharsets.UTF_8));
return headers;
});
var tokenResponseClient = new WebClientReactiveAuthorizationCodeTokenResponseClient();
tokenResponseClient.setHeadersConverter(headersConverter);
return tokenResponseClient;
}
}See the Customize Token Request Parameters section in the reference for information on customizing other grant types. |
sjohnr
added
type: breaks-passivity
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In spring-projects/spring-framework#31742 a change was made to not add the charset parameter if it is UTF-8 (more details on the linked issue). This affected some of the OAuth2 classes.
We should probably accept this breaking change and make sure that we include the necessary information in this ticket if users still need to include the charset parameter.
The text was updated successfully, but these errors were encountered: