From a7b2b7cbeac875c97ebe035ea6584d77a2395b37 Mon Sep 17 00:00:00 2001
From: ngriesser <griesser@econda.de>
Date: Wed, 21 Sep 2016 15:57:40 +0200
Subject: [PATCH] use the same encoding as on client side

see OIDCAuthenticationFilter line 336
---
 .../oauth2/service/impl/UriEncodedClientUserDetailsService.java | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/openid-connect-common/src/main/java/org/mitre/oauth2/service/impl/UriEncodedClientUserDetailsService.java b/openid-connect-common/src/main/java/org/mitre/oauth2/service/impl/UriEncodedClientUserDetailsService.java
index b2ab65642..bbb184816 100644
--- a/openid-connect-common/src/main/java/org/mitre/oauth2/service/impl/UriEncodedClientUserDetailsService.java
+++ b/openid-connect-common/src/main/java/org/mitre/oauth2/service/impl/UriEncodedClientUserDetailsService.java
@@ -68,7 +68,7 @@ public class UriEncodedClientUserDetailsService implements UserDetailsService {
 
 			if (client != null) {
 
-				String encodedPassword = UriUtils.encodeQueryParam(Strings.nullToEmpty(client.getClientSecret()), "UTF-8");
+				String encodedPassword = UriUtils.encodePathSegment(Strings.nullToEmpty(client.getClientSecret()), "UTF-8");
 
 				if (config.isHeartMode() || // if we're running HEART mode turn off all client secrets
 						(client.getTokenEndpointAuthMethod() != null &&