[QUESTION] - how to make username password work with oauth2

[oarkflow]

I tried with the example provided in the library. I am able to login with any credentials (username/password), even with wrong credentials.

How to make it work?

[LyricTian]

Cool, I will try fix this bug, follows this commit: 00133fa9a6e72407ce2286d33994df3e8d967a7e

[oarkflow]

@LyricTian You've added check for username password in POST request of "/login". I was wondering the use of

oauth2/example/server/server.go

Lines 67 to 74 in 00133fa

	srv.SetPasswordAuthorizationHandler(func(ctx context.Context, clientID, username, password string) (userID string, err error) {
	if username == "test" && password == "test" {
	userID = "test"
	} else {
	err = errors.New("invalid username or password")
	}
	return
	})

Why to include this snippet if we added same logic in POST "/login"

[LyricTian]

Following your question above , you can see this snippet:

oauth2/example/server/server.go

Lines 209 to 218 in 00133fa

	if r.Form.Get("username") == "test" && r.Form.Get("password") == "test" {
	store.Set("LoggedInUserID", r.Form.Get("username"))
	store.Save()
	w.Header().Set("Location", "/auth")
	w.WriteHeader(http.StatusFound)
	return
	} else {
	http.Error(w, "Invalid username or password", http.StatusUnauthorized)
	return

Fix the scenario where incorrect username and password are input during mock user login.

I tried with the example provided in the library. I am able to login with any credentials (username/password), even with wrong credentials.

How to make it work?