Uploaded image for project: 'COmanage'
  1. COmanage
  2. CO-2843

OAuth2Server model access_token field too small

    XMLWordPrintable

Details

    Description

      The Microsoft Graph API accepts an access token for authorization. The access token may be acquired using the client credentials grant type with a client ID and secret from the https://login.microsoftonline.com/<tenant ID>/oauth2/v2.0/token endpoint.

      The access token returned has, roughly, 1600 characters. Note that it is a proper JWT.

      The current schema for the cm_oauth2_servers table limits the access_token field to 160 characters, probably assuming a generic opaque string for the token instead of a JWT.

      Attachments

        Activity

          People

            ioannis.e.igoumenos@at.internet2.edu Ioannis Eythymios Igoumenos
            scott.koranda@at.internet2.edu Scott Koranda
            Votes:
            0 Vote for this issue
            Watchers:
            2 Start watching this issue

            Dates

              Created:
              Updated:
              Resolved: