This was intetionally changed in 2.3.21, you need to use
http://clientid:clientsecret@localhost:8080/
Aki
On 14/11/2024 15:17 EET piotr-l--- via dovecot <dovecot@dovecot.org> wrote:
Hi,
Don't you use grant_url?
As far as I can see, both versions use client's id/secret for grant_url and receive an access_token. Both use the token for introspection_url, but 2.3.20 sends id/secret with it and 2.3.21 does not.
Tested with plain auth and the following settings grant_url = http://localhost:8080/realms/test/protocol/openid-connect/token use_grant_password = yes introspection_url = http://localhost:8080/realms/test/protocol/openid-connect/token/introspect introspection_mode = post username_attribute = username client_id = dovecot client_secret = secret
Regards, Piotr
dovecot mailing list -- dovecot@dovecot.org To unsubscribe send an email to dovecot-leave@dovecot.org