Preflight checklist
Ory Network Project
No response
Describe the bug
The PATCH {{baseUrl}}/admin/clients/{id} endpoint loses the RegistrationAccessTokenSignature when marshaling the client to JSON, permanently invalidating the registration access token. This makes it impossible to manage the client via the Dynamic Client Registration endpoints GET /oauth2/register/{id}, PUT /oauth2/register/{id} and DELETE /oauth2/register/{id}.
Reproducing the bug
- Create an OAuth2 client using the OIDC Dynamic Client Registration API.
- Call the
PATCH /admin/clients/{id} endpoint and update the client.
- Attempt to manage the client using the Dynamic Client Registration API (
GET, PUT, or DELETE).
Relevant log output
Relevant configuration
oidc:
dynamic_client_registration:
enabled: true
Version
25.4.0
On which operating system are you observing this issue?
Linux
In which environment are you deploying?
Kubernetes with Helm
Additional Context
No response
Preflight checklist
Ory Network Project
No response
Describe the bug
The
PATCH {{baseUrl}}/admin/clients/{id}endpoint loses theRegistrationAccessTokenSignaturewhen marshaling the client to JSON, permanently invalidating the registration access token. This makes it impossible to manage the client via the Dynamic Client Registration endpointsGET /oauth2/register/{id},PUT /oauth2/register/{id}andDELETE /oauth2/register/{id}.Reproducing the bug
PATCH /admin/clients/{id}endpoint and update the client.GET,PUT, orDELETE).Relevant log output
Relevant configuration
Version
25.4.0
On which operating system are you observing this issue?
Linux
In which environment are you deploying?
Kubernetes with Helm
Additional Context
No response