Oauth2 ClientId ClientSecret with axios #1506

linqFR · 2021-02-22T19:20:06Z

linqFR
Feb 22, 2021

Hello,
I am using local scheme to access my oauth2 internal server with grant password and have got an issue: clientId is sent in the body instead of

auth: {
   username: 'janedoe',
   password: 's00pers3cret'
}

as expected by axios (see https://github.com/axios/axios#request-config ).

Working with axios directly to request token, following axios options are working fine:

{
	auth : {
		username: clientId,
		password: clientSecret
	},
	data:{
		grant_type:'password',
		username,
		password,
		scope
	}
}

OR if Authorization requires a Bearer, i am using:

// base64 equivalent of btoa (not supported in nodejs)
var base64 = Buffer.from(`${this.config.clientId.toString()}:${this.config.clientId.toString()}`).toString('base64')
{
	headers:{Authorization:`Basic ${base64}`},
	data:{
		grant_type:'refresh_token',
		refresh_token: refreshToken,
// 		scope: scope // optional
	}
}

Reading code i see that clientId is added to data (body) in Local Scheme before being sent to axios.

auth-module/src/schemes/local.ts

Line 159 in 37b1156

endpoint.data.client_id = this.options.clientId

Does LocalScheme not support grant type password ? Have i to write a custom Local?

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Oauth2 ClientId ClientSecret with axios #1506

{{title}}

{{editor}}'s edit

{{editor}}'s edit

Replies: 0 comments

Select a reply

Oauth2 ClientId ClientSecret with axios #1506

linqFR Feb 22, 2021

Replies: 0 comments

linqFR
Feb 22, 2021