Skip to content

Opaque Token Introspector should return an Authenticated Principal #7345

New issue
New issue
Closed
Closed
Opaque Token Introspector should return an Authenticated Principal#7345
Assignees
jzheaux
Labels
in: oauth2An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)type: enhancementA general enhancement
Milestone
 
5.2.0.RC1
@jzheaux

Description

@jzheaux
jzheaux
opened on Sep 3, 2019

Similar to OAuth2UserService, which returns an OAuth2User (which is an AuthenticatedPrincipal), it'd be appropriate for OpaqueTokenIntrospector to return OAuth2AuthenticatedPrincipal.

It shouldn't return an OpaqueToken because the token is no longer opaque once it returns from introspection.

Metadata

Metadata

Assignees

Labels

in: oauth2An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose)type: enhancementA general enhancement

Type

No type

Projects

No projects

Milestone

Relationships

None yet

Development

No branches or pull requests

Issue actions