Skip to content

fix: add auth_methods client_secret_basic for refresh token and revok… #803

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Open
kufd wants to merge 2 commits into
base: main
Choose a base branch
from
Open

fix: add auth_methods client_secret_basic for refresh token and revok… #803

kufd wants to merge 2 commits into from

Conversation

@kufd
Copy link

@kufd kufd commented Sep 30, 2025
edited
Loading

I have an authentication provider that only accepts client secrets from the request headers.

Because of this, the refresh token and revoke token requests fail — the Authorization header is missing.

This PR adds the Authorization header with the client credentials to those requests.
Additionally, I’ve updated how the header is added in other requests to follow the same approach.

I’d appreciate any feedback and am happy to adjust the PR as needed.

@rajatcing rajatcing requested a review from muhlemmer October 1, 2025 09:38
@rajatcing
Copy link

rajatcing commented Oct 1, 2025

cc @elinashoko

@elinashoko
Copy link

elinashoko commented Oct 7, 2025

heya @kufd thank you for your contribution, we'll review as soon as we can!

@elinashoko elinashoko moved this to 📋 Sprint Backlog in Product Management Oct 7, 2025
muhlemmer
muhlemmer reviewed Oct 22, 2025
View reviewed changes
Copy link
Collaborator

@muhlemmer muhlemmer left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

@kufd, can you plead amend the description of you PR and clearly state:

  • What is the bug being solved. Preferably an issue with a reproducible case
  • How is the bug solved

It's hard to understand the problem and the fix looking at the code alone.

@kufd
Copy link
Author

kufd commented Oct 22, 2025

@muhlemmer Could you please take a look at the PR description?
I’ve updated it — I hope it looks better now.

@elinashoko elinashoko moved this from 📋 Sprint Backlog to 👀 In review in Product Management Nov 24, 2025
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@muhlemmer muhlemmer muhlemmer left review comments

At least 1 approving review is required to merge this pull request.

Assignees

No one assigned

Labels

os-contribution

Projects

Product Management
Status: 👀 In review

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

5 participants

@kufd @rajatcing @elinashoko @muhlemmer @hifabienne