This repository was archived by the owner on Dec 13, 2018. It is now read-only.
This repository was archived by the owner on Dec 13, 2018. It is now read-only.
Fix OpenIdConnectTokenEndpointResponse to return the actual OpenIdConnectMessage #501
Closed
Description
OpenIdConnectTokenEndpointResponse
manually creates an incomplete OpenIdConnectMessage
by extracting a few parameters from the JSON object instead of extracting all the parameters. It should be fixed to flow the complete message.
Currently, this prevent the new SaveTokensAsClaims
feature from correctly storing the refresh token: https://github.com/aspnet/Security/blob/dev/src/Microsoft.AspNet.Authentication.OpenIdConnect/OpenIdConnectTokenEndpointResponse.cs#L17-L23