Open pszalko opened 4 years ago
I had the same issue, it's due to the fact they changed the AbstractGrant class 2 months ago (https://github.com/thephpleague/oauth2-server/commit/cb35b9a02ba69a4205b636544368ccb56762ecc5) and we use a not fixed version of phpleague/oauth2-server
A possible solution would be to set this requirement to 8.1.1
I'm using Authorization Code flow to authorize OAuth2 client. The redirect_uri will be dynamic, different each time for the same client.
The issue is that
AuthCodeGrant
does not allow to authorize when client has empty redirect_url set in configuration.The same issue is true for any
Grant
extending fromAbstractGrant
class, because validation method does not allow empty redirect_uri inClientEntity
.Here is how I create the client:
and the database entry is as follow:
The code that should allow empty redirect_uri is in
AbstractGrant
. Please note that this method does not check if$client->getRedirectUri()
is an empty array: