Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

DefaultReactiveOAuth2AuthorizedClientManager.saveAuthorizedClient does not save authorized client #7546

Closed
philsttr opened this issue Oct 18, 2019 · 0 comments
Closed

DefaultReactiveOAuth2AuthorizedClientManager.saveAuthorizedClient does not save authorized client #7546

philsttr opened this issue Oct 18, 2019 · 0 comments
Assignees
@jgrandja
Labels
in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
Milestone
5.2.1

Comments

@philsttr
Copy link
Contributor

Summary

DefaultReactiveOAuth2AuthorizedClientManager.saveAuthorizedClient never actually saves the authorized client, because it ignores the Mono<Void> returned from authorizedClientRepository.saveAuthorizedClient

Actual Behavior

DefaultReactiveOAuth2AuthorizedClientManager.saveAuthorizedClient does not save the authorized client.

spring-security/oauth2/oauth2-client/src/main/java/org/springframework/security/oauth2/client/web/DefaultReactiveOAuth2AuthorizedClientManager.java

Lines 108 to 111 in 6ad328f

.map(exchange -> {
this.authorizedClientRepository.saveAuthorizedClient(authorizedClient, principal, exchange);
return authorizedClient;
})

this.authorizedClientRepository.saveAuthorizedClient returns a Mono<Void>, which is ignored, and never included in the stream, and therefore never subscribed.

Expected Behavior

DefaultReactiveOAuth2AuthorizedClientManager.saveAuthorizedClient saves the authorized client.

Perhaps:

	.flatMap(exchange -> 
		this.authorizedClientRepository.saveAuthorizedClient(authorizedClient, principal, exchange)
			.thenReturn(authorizedClient))

Configuration

n/a

Version

Spring Boot 2.2.0.RELEASE
Spring Security 5.2.0.RELEASE

Sample

n/a
@spring-projects-issues spring-projects-issues added the status: waiting-for-triage An issue we've not yet triaged label Oct 18, 2019
@philsttr philsttr mentioned this issue Oct 20, 2019
Closed
@jgrandja jgrandja self-assigned this Oct 23, 2019
@jgrandja jgrandja added in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug and removed status: waiting-for-triage An issue we've not yet triaged labels Oct 23, 2019
@jgrandja jgrandja added this to the 5.2.1 milestone Oct 23, 2019
@jgrandja jgrandja mentioned this issue Oct 23, 2019
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@jgrandja jgrandja

Labels
in: oauth2 An issue in OAuth2 modules (oauth2-core, oauth2-client, oauth2-resource-server, oauth2-jose) type: bug A general bug
Projects
None yet
Milestone
5.2.1
Development

Successfully merging a pull request may close this issue.

Make saveAuthorizedClient save the authorized client
3 participants
@philsttr @jgrandja @spring-projects-issues