The exiting implementation of the 'auth-require-role'-extension is meant to be used for browser-based-flows. It fails when using it with direct-grant-based-flows.
This PR adds another authenticator that derives from the existing one. It just changes the response in case the authentication is not successful, so it can be used with direct-grant-flows.
thomasdarimont
commented
4 years ago
The exiting implementation of the 'auth-require-role'-extension is meant to be used for browser-based-flows. It fails when using it with direct-grant-based-flows.
This PR adds another authenticator that derives from the existing one. It just changes the response in case the authentication is not successful, so it can be used with direct-grant-flows.