Peter Chen

> if you didn't set the flag and attempted to refresh a token with a public client, you would get "Refresh without client authentication not allowed" error I see. Currently,...

So far, we have abandoned the proposed fix to this issue (https://github.com/cloudfoundry/uaa/pull/2790) as there are no active reports that users are encountering this issue. This issue may be closed after...

@strehle, Hi, let's keep this open until we have v78 (when the upgrade scenario of v76->v77 becomes rare). This issue is more of a documentation of a known issue, rather...

Hi, as this PR is a stepping stone toward the overall "alias feature," and as it looks like the changes are limited to the specific code paths related to the...

Ok cool, seems like there's at least a workaround / a hack. We'll keep the issue open and in mind but likely won't pursue a fix immediately, because being compatible...

Also, what is the issue in real life? When logging in with an external IDP, the email value we get from the IDP would be an empty string & the...

Hi @mikeroda, approved, please merge.