connect2id / OAuth 2.0 SDK with OpenID Connect extensions / issues / #437 - JakartaServletUtils should check for x509 certificate in request attribute jakarta.servlet.request.X509Certificate — Bitbucket

Issue #437 resolved

Jesper created an issue 2023-09-14

Maybe JakartaServletUtils should first check jakarta.servlet.request.X509Certificate for certificate and if not found it could check javax.servlet.request.X509Certificate?

https://bitbucket.org/connect2id/oauth-2.0-sdk-with-openid-connect-extensions/src/d8dce80762e10da5972bf9cfb94dbada898ac59f/src/main/java/com/nimbusds/oauth2/sdk/http/JakartaServletUtils.java#lines-327

‌

Comments (5)

Jesper reporter
- marked as minor
- 2023-09-14T06:25:10+00:00
Yavor Vasilev
- changed status to open
Thanks for the report
- 2023-09-14T07:45:37+00:00
Yavor Vasilev
- changed status to resolved
Fixed here: f4f11d20c7ef4334e8444a38dc7ad4cc53997514
- 2023-09-14T07:59:24+00:00

Yavor Vasilev

Released as

version 10.15 (2023-09-14)
    * Deprecates DefaultRPMetadataPolicyFactory, explicit client registration
      in OpenID Connect Federation 1.0 no longer uses metadata policies in the
      explicit client registration response.
    * The JakartaServletUtils.extractClientX509Certificate must use the
      "jakarta.servlet.request.X509Certificate" servlet attribute to obtain the
      client X509Certificate chain (iss #437).

Happy coding

2023-09-14T08:18:24+00:00

Jesper reporter
Fantastic support! Thank you very much
- 2023-09-14T08:38:43+00:00
Log in to comment

Assignee: –

Type: bug

Priority: minor

Status: resolved

Milestone: –

Votes: 0

Watchers: 1

Jira: the preferred issue tracker for Bitbucket. Join the team!