Hi guys, I am trying to implement an OAuth2 authorization server ONLY (no resource) with CXF 3, here are more details about what I have done so far: http://stackoverflow.com/questions/26640648/implementing-an-oauth2-authorization-server-with-cxf
The problem is I get "HTTP 401 Unauthorized" on /oauth/authorize First I don't get it because this is url should always been authorized by definition. Secondly, the exception is thrown in org.apache.cxf.rs.security.oauth2.services.RedirectionBasedGrantService, when it tries to get the security context line 311: SecurityContext securityContext = (SecurityContext)getMessageContext().get(SecurityContext.class.getName()); But obviously the security context is null since I am trying to be authorized, so I can never be authorized, it's a vicious circle... Thanks for your help! -- View this message in context: http://cxf.547215.n5.nabble.com/OAuth2-getting-HTTP-401-Unauthorized-on-authorize-tp5751051.html Sent from the cxf-user mailing list archive at Nabble.com.
