fix: add additional application/json accept header to issuer client #4210
Conversation
There was a problem hiding this comment.
Good catch! That is really a problem, for Authentication Provider who enforce the OIDC specification and don't allow other accept headers.
Our tests also uses the JSON as response type and never checked for the correct ACCEPT header.
Could you add a check for the ACCEPT header into the Wiremock stub configuration for the token Endpoint in the different OidcClientTest classes? (package: sda-commons-client-jersey/src/test/java/org/sdase/commons/client/jersey/oidc/)
for example in OidcClientTest itself:
WIRE.stubFor(
post("/token")
.withHeader(ACCEPT, equalTo(APPLICATION_FORM_URLENCODED + "," + APPLICATION_JSON)) //or similar check
.willReturn(
aResponse()
.withStatus(200)
.withHeader(CONTENT_TYPE, APPLICATION_JSON)
.withBodyFile("fixtures/tokenResponse.json")));
so that it is checked, that now both headers are always send to the Authorization Provider?
pathec
force-pushed
the
feat/issuer-accept-header
branch
3 times, most recently
from
51740a4 to
eaf9f4a
Compare
|
@YellowFlora thanks for the review. Please have a look again |
YellowFlora
left a comment
YellowFlora
left a comment
There was a problem hiding this comment.
Looks good!
Its only missing in OidcRequestFilterTest; the stub configuration is at the bottom there
pathec
force-pushed
the
feat/issuer-accept-header
branch
from
eaf9f4a to
4b73a01
Compare
YellowFlora
left a comment
YellowFlora
left a comment
There was a problem hiding this comment.
👍
(i will check sonar tmr morning, not sure yet why it doesnt work)
|
Hi @YellowFlora have you already looked into the sonar issue? |
|
Hi @pathec we downgraded Sonar now, so it should work now |
YellowFlora
force-pushed
the
feat/issuer-accept-header
branch
from
4b73a01 to
ced5dc2
Compare
|
🎉 This PR is included in version 8.1.4 🎉 The release is available on GitHub release Your semantic-release bot 📦🚀 |
3 participants
No description provided.