-
Notifications
You must be signed in to change notification settings - Fork 1.3k
Description
Expected Behavior
Allow to configure AuthorizationServerContextFilter
or IssuerResolver
, this should allow to change default url prefix issuer resolver to different type of resolvers, for example: request header/parameter resolver, url path resolver.
Or allow to disable AuthorizationServerContextFilter
, this should allow to add custom filter.
Current Behavior
AuthorizationServerContextFilter and IssuerResolver are private, not possible to configure or disable.
Context
Want to resolve tenant from url, then concatenate some static prefix. But current AuthorizationServerContextFilter
may execute after my custom filter, so it is better to have ability to disable it or change IssuerResolver
.
By requesting http://localhost:8080/issuer1/.well-known/openid-configuration
I want to get issuer1
or https://static-value/issuer1
instead http://localhost:8080/issuer1
.
Another reason is to add OAuth social login client urls http://localhost:8080/issuer1/login/oauth2/code/...
and http://localhost:8080/issuer1/oauth2/authorization/...
to authorization server context. Using different filters for OAuth server/client urls may result in inconsistent issuer resolution.