From a57c336e119e0b91b8d9e2db620c62c14dbb60fc Mon Sep 17 00:00:00 2001 From: Justin Richer Date: Mon, 16 Mar 2015 12:29:17 -0400 Subject: [PATCH] added uma_authorization to default scope set --- .../main/java/org/mitre/oauth2/service/SystemScopeService.java | 1 + openid-connect-server-webapp/src/main/resources/db/scopes.sql | 3 ++- 2 files changed, 3 insertions(+), 1 deletion(-) diff --git a/openid-connect-common/src/main/java/org/mitre/oauth2/service/SystemScopeService.java b/openid-connect-common/src/main/java/org/mitre/oauth2/service/SystemScopeService.java index 138ffa3e9..487af45f3 100644 --- a/openid-connect-common/src/main/java/org/mitre/oauth2/service/SystemScopeService.java +++ b/openid-connect-common/src/main/java/org/mitre/oauth2/service/SystemScopeService.java @@ -37,6 +37,7 @@ public interface SystemScopeService { public static final String REGISTRATION_TOKEN_SCOPE = "registration-token"; // this scope manages dynamic client registrations public static final String RESOURCE_TOKEN_SCOPE = "resource-token"; // this scope manages client-style protected resources public static final String UMA_PROTECTION_SCOPE = "uma_protection"; + public static final String UMA_AUTHORIZATION_SCOPE = "uma_authorization"; public static final Set reservedScopes = Sets.newHashSet( diff --git a/openid-connect-server-webapp/src/main/resources/db/scopes.sql b/openid-connect-server-webapp/src/main/resources/db/scopes.sql index dc4b8d8f2..e0345dce0 100644 --- a/openid-connect-server-webapp/src/main/resources/db/scopes.sql +++ b/openid-connect-server-webapp/src/main/resources/db/scopes.sql @@ -17,7 +17,8 @@ INSERT INTO system_scope_TEMP (scope, description, icon, restricted, default_sco ('address', 'physical address', 'home', false, true, false, null), ('phone', 'telephone number', 'bell', false, true, false, null), ('offline_access', 'offline access', 'time', false, false, false, null), - ('uma_protection', 'manage protected resources', 'briefcase', false, false, false, null); + ('uma_protection', 'manage protected resources', 'briefcase', false, false, false, null), + ('uma_authorization', 'request access to protected resources', 'share', false, false, false, null); -- -- Merge the temporary scopes safely into the database. This is a two-step process to keep scopes from being created on every startup with a persistent store.