OAuth2 fix: Detect client registration method according to new spring security API.

2024-04-18 13:20:04 +03:00 · 2024-04-18 13:20:04 +03:00 · 6f29073556
commit 6f29073556
parent 0f9aeaa697
1 changed files with 2 additions and 1 deletions
--- a/dao/src/main/java/org/thingsboard/server/dao/oauth2/HybridClientRegistrationRepository.java
+++ b/dao/src/main/java/org/thingsboard/server/dao/oauth2/HybridClientRegistrationRepository.java
@ -52,7 +52,8 @@ public class HybridClientRegistrationRepository implements ClientRegistrationRep
                .userInfoUri(registration.getUserInfoUri())
                .userNameAttributeName(registration.getUserNameAttributeName())
                .jwkSetUri(registration.getJwkSetUri())
-                .clientAuthenticationMethod(new ClientAuthenticationMethod(registration.getClientAuthenticationMethod()))
+                .clientAuthenticationMethod(registration.getClientAuthenticationMethod().equals("POST") ?
+                        ClientAuthenticationMethod.CLIENT_SECRET_POST : ClientAuthenticationMethod.CLIENT_SECRET_BASIC)
                .redirectUri(defaultRedirectUriTemplate)
                .build();
    }