keycloak-scim/testsuite
Thomas Darimont 690c6051bb Fix scope policy evaluation for client to client token exchange (#26435)
Previously the scope from the token was not set available in the ClientModelIdentity attributes.
This caused the NPE in `org.keycloak.authorization.policy.provider.clientscope.ClientScopePolicyProvider.hasClientScope`(..)
when calling `identity.getAttributes().getValue("scope")`.

We now pass the provided decoded AccessToken down to the ClientModelIdentity creation
to allow to populate the required scope attribute.

We also ensure backwards compatibility for ClientPermissionManagement API.

Fixes #26435

Signed-off-by: Thomas Darimont <thomas.darimont@googlemail.com>
2024-06-28 10:33:20 +02:00
..
integration-arquillian Fix scope policy evaluation for client to client token exchange (#26435) 2024-06-28 10:33:20 +02:00
model Use a default Java version from root POM (#29927) 2024-06-21 14:19:31 +02:00
utils Added suffix to keycloak-admin-client artifacts in keycloak repository 2024-06-27 11:00:30 +02:00
pom.xml [#29412] DB Allocator removal - dependency cleanup. (#30406) 2024-06-13 13:31:52 +00:00