- changed status to open
Token request parse error: IllegalArgumentException in URLDecoder
Issue #208
resolved
POST /c2id/token HTTP/1.1
Content-Type: application/x-www-form-urlencoded
Authorization: Basic KVQdqB25zeFg4duoJf7ZYo4wDMXtQjqlpxWdgFm06vc
Cache-Control: no-cache
Postman-Token: 5373febb-8b0d-c1de-cac7-97ff9f670a73
grant_type=authorization_code&code=a0x3DwU3vE9Ad1CbWdy1LQ.KaPahOgJJjODKWE47-DXzg&redirect_uri=dufryred%3A%2F%2Foauth.callback&code_verifier=VjdnvRw3_nTdhoWLcwYBjVt2wQnklP-gcXRmFXvQcM6OhMqDQOXWhXQvqHeCbgOlJHsu8xDVyRU0vRaMzuEKbQ&client_id=47ub27skbkcf2
Stack trace:
2017-02-24T21:41:58,644 INFO http-nio-8080-exec-12 TOKEN - HTTP POST request: ip=10.134.174.19 path=/c2id/token
2017-02-24T21:41:58,645 ERROR http-nio-8080-exec-12 TOKEN - [OP6300] URLDecoder: Illegal hex characters in escape (%) pattern - For input string: ""
java.lang.IllegalArgumentException: URLDecoder: Illegal hex characters in escape (%) pattern - For input string: ""
at java.net.URLDecoder.decode(URLDecoder.java:194) ~[?:1.8.0_111]
at com.nimbusds.oauth2.sdk.auth.ClientSecretBasic.parse(ClientSecretBasic.java:157) ~[oauth2-oidc-sdk-5.17.2.jar:5.17.2]
at com.nimbusds.oauth2.sdk.auth.ClientSecretBasic.parse(ClientSecretBasic.java:191) ~[oauth2-oidc-sdk-5.17.2.jar:5.17.2]
at com.nimbusds.oauth2.sdk.auth.ClientAuthentication.parse(ClientAuthentication.java:122) ~[oauth2-oidc-sdk-5.17.2.jar:5.17.2]
at com.nimbusds.oauth2.sdk.TokenRequest.parse(TokenRequest.java:416) ~[oauth2-oidc-sdk-5.17.2.jar:5.17.2]
at com.nimbusds.openid.connect.provider.token.TokenRequestHandler.process(TokenRequestHandler.java:217) ~[c2id-6.0.jar:?]
at com.nimbusds.openid.connect.provider.token.TokenServlet.doPost(TokenServlet.java:61) [c2id-6.0.jar:?]
at javax.servlet.http.HttpServlet.service(HttpServlet.java:648) [servlet-api.jar:?]
at javax.servlet.http.HttpServlet.service(HttpServlet.java:729) [servlet-api.jar:?]
...
Comments (6)
-
reporter -
reporter - edited description
-
reporter - edited description
-
reporter - edited description
-
reporter - edited description
-
reporter - changed status to resolved
Fixes parsing of client secret basic auth with illegal URL-encoding: commit 5287650
- Log in to comment