search

thephpleague / oauth2-server-bundle

Symfony bundle for the OAuth2 Server.
MIT License
181 stars 88 forks source link

A logged in user is required to resolve the authorization request. #200

Closed ro0NL closed 3 hours ago

ro0NL commented 4 hours ago

Hi,

After bumping v0.8.0 to v0.9.0, we see sporadically A logged in user is required to resolve the authorization request. in prod.

Im wondering if it's a tampered/invalid call, and thus the controller should produce 4xx instead.

krkabol commented 3 hours ago

Please see docs https://github.com/thephpleague/oauth2-server-bundle/blob/44272ff229da25305d4f5612546851bbcaa72d9a/docs/index.md?plain=1#L149 - it is required to set it after Flex manually

similar to #191

ro0NL commented 3 hours ago

oh wow, it was indeed missing in one of our apps :cold_sweat:

thanks!