With the migration to Spring Security 5.2.x we added a regression in regards to the
ExternalOauth2ResourceAuthoritiesMapper.
If this is not empty: authorizationProperties.getExternalAuthoritiesUrl() then we should configure the ExternalOauth2ResourceAuthoritiesMapper instead the default DefaultAuthoritiesMapper.
With the migration to Spring Security 5.2.x we added a regression in regards to the
ExternalOauth2ResourceAuthoritiesMapper
.If this is not empty:
authorizationProperties.getExternalAuthoritiesUrl()
then we should configure theExternalOauth2ResourceAuthoritiesMapper
instead the defaultDefaultAuthoritiesMapper
.