Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Behaviour Change in Access Tokens issued for authenticated applications #16060

Closed
SujanSanjula96 opened this issue Jun 15, 2023 · 1 comment
Closed

Behaviour Change in Access Tokens issued for authenticated applications #16060

SujanSanjula96 opened this issue Jun 15, 2023 · 1 comment
Labels
7.0.0-migration Component/Migration Priority/Highest Severity/Critical Type/Docs
Milestone
7.0.0-rc1

Comments

@SujanSanjula96
Copy link
Contributor

Describe the issue:
Following two behavioural changes are done for the access tokens issuing for authenticated applications using a grant type like client credentials.

  • sub claim of the jwt tokens issued for authenticated application is set as client id of the authenticated application. (Previous behaviour - sub claim is set as the user ID of the application owner)
  • Username field is removed from the introspection response for access tokens issued for authenticated applications.

To keep the backward compatibility, we have introduced two configurations. Two configurations can be set to false for the previous behaviour.

[oauth]
use_client_id_as_sub_claim_for_app_tokens = false
remove_username_from_introspection_response_for_app_tokens = false

Related issues:
#14771

Related PRs:
wso2/carbon-identity-framework#4633
wso2-extensions/identity-inbound-auth-oauth#2088
@SujanSanjula96 SujanSanjula96 mentioned this issue Jun 15, 2023
Closed
@ashensw ashensw added this to the 6.2.0 milestone Jul 19, 2023
@ashensw ashensw moved this from Done to Todo in Identity Server 7.0.0 Jul 19, 2023
@melanisilva
Copy link

Verified

IS Pack - WSO2 Identity Server-7.0.0-m4-SNAPSHOT

Screenshot 2023-10-23 at 16 52 36

@thanujalk thanujalk modified the milestones: 7.0.0-beta4, 7.0.0-beta5 Dec 23, 2023
@SujanSanjula96 SujanSanjula96 modified the milestones: 7.0.0-beta5, 7.0.0-rc1 Jan 12, 2024
@github-project-automation github-project-automation bot moved this from Open to Done in Identity Server 7.0.0 Mar 13, 2024
This was referenced Aug 14, 2024
Merged
Merged
@mpmadhavig mpmadhavig mentioned this issue Aug 23, 2024
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
7.0.0-migration Component/Migration Priority/Highest Severity/Critical Type/Docs
Projects
Identity Server 7.0.0
Status: Done
Identity Server 7.1.0
Status: Done
Milestone
7.0.0-rc1
Development

No branches or pull requests
5 participants
@thanujalk @ashensw @chamathns @melanisilva @SujanSanjula96