Joe Grandja

@TakahikoKawasaki I'm going to close this issue as it requests multiple enhancements and the preference is to have each enhancement logged in a separate issue. Furthermore, it appears there hasn't...

@dlehammer > Appending additional validation supplementing the default validation should be a 1st class citizen We don't want to expose `OAuth2AuthorizationEndpointConfigurer.addAuthenticationValidator()` at this point for the following reasons: 1) Not...

@dlehammer I'm not sure I want to expose `OAuth2AuthorizationCodeRequestAuthenticationValidator.authenticationValidator` but I like the idea of containing the enhancement to this class to help users customize the authentication validator while preserving...

@dlehammer We just released `1.1` and will soon be planning `1.2`, which could potentially include this enhancement. Please give me a couple of weeks until we finalize our `1.2` plan...

@Yneth The [Protocol Endpoints](https://docs.spring.io/spring-authorization-server/docs/current/reference/html/protocol-endpoints.html) provide hooks into customizing the error response (including error code) by configuring a custom `AuthenticationFailureHandler`. For example, the [Token Endpoint](https://docs.spring.io/spring-authorization-server/docs/current/reference/html/protocol-endpoints.html#oauth2-token-endpoint) provides `authorizationServerConfigurer.tokenEndpoint.errorResponseHandler()` for customizing the [OAuth2Error...

Thanks for the explanation @Yneth. I've re-opened the issue and we'll give it some further thought.

@Chr3is Can you have @c3mig respond to this issue? I can't see the name in the assignees pick list. It will show up after they respond here.

@Balaji-Murugaiya Thanks for the offer but this is currently assigned to @c3mig. Although there hasn't been anything submitted as of yet, this enhancement does not appear to be needed since...

@Chr3is > We would like to get rid of this additional redirect and perform an internal forward to the consent controller with the original authorization request. Can you please provide...

@Chr3is > We want to minimize the count of redirects as much as possible. I'm trying to understand why you want to minimize the redirects? Is this causing an issue?...