Fix jdbc scope validator invalid scope issue

wso2-extensions · Jun 26, 2024 · bb39aae · bb39aae
1 parent 15fb88a
commit bb39aae
Showing 1 changed file with 6 additions and 1 deletion.
diff --git a/...ty.oauth/src/main/java/org/wso2/carbon/identity/oauth2/validators/JDBCScopeValidator.java b/...ty.oauth/src/main/java/org/wso2/carbon/identity/oauth2/validators/JDBCScopeValidator.java
@@ -93,6 +93,11 @@ public class JDBCScopeValidator extends OAuth2ScopeValidator {
     private static final String SCOPE_VALIDATOR_NAME = "Role based scope validator";
     private static final String OPENID = "openid";
     private static final String PRESERVE_CASE_SENSITIVITY = "preservedCaseSensitive";
+    private static final String SCOPE_VALIDATOR_PRESERVE_CASE_SENSITIVITY_CONFIG =
+            "OAuth.ScopeValidationPreserveCaseSensitivity";
+
+    private static final boolean SCOPE_VALIDATOR_PRESERVE_CASE_SENSITIVITY =
+            Boolean.parseBoolean(IdentityUtil.getProperty(SCOPE_VALIDATOR_PRESERVE_CASE_SENSITIVITY_CONFIG));
 
     private static final Log log = LogFactory.getLog(JDBCScopeValidator.class);
 
@@ -411,7 +416,7 @@ private boolean isUserAuthorizedForScope(String scopeName, String[] userRoles, i
 
         //Check if the user still has a valid role for this scope.
         Set<String> scopeRoles = new HashSet<>(rolesOfScope);
-        if (preservedCaseSensitive) {
+        if (preservedCaseSensitive || SCOPE_VALIDATOR_PRESERVE_CASE_SENSITIVITY) {
             rolesOfScope.retainAll(Arrays.asList(userRoles));
         } else {
             Set<String> rolesOfScopeLowerCase = new HashSet<>();