search

Amebis / eduVPN

Windows eduVPN Client
GNU General Public License v3.0
41 stars 16 forks source link

requests to token endpoint MUST contain client_id in POST body #218

Closed ghost closed 1 year ago

ghost commented 1 year ago

https://www.ietf.org/archive/id/draft-ietf-oauth-v2-1-07.html#section-3.2.2

This breaks with php-oauth2-server >= 7.4.0 because the enforcement of this became strict. Unfortunately this hasn't been noticed before...

ghost commented 1 year ago

https://git.sr.ht/~fkooman/php-oauth2-server/commit/dc019f71c6b540e6189362be714087108818b0fa

workaround in OAuth server (for now)