fdfb80cfef02263a66a98ef43beeaa56b76dbd38,rt/rs/security/oauth-parent/oauth2/src/main/java/org/apache/cxf/rs/security/oauth2/services/RedirectionBasedGrantService.java,RedirectionBasedGrantService,startAuthorization,#MultivaluedMap#UserSubject#Client#,128

Before Change


            client, requestedScope, userSubject, supportedGrantType);
        final boolean authorizationCanBeSkipped = 
            preAuthorizedToken != null 
            || canAuthorizationBeSkipped(client, userSubject, requestedScope, requestedPermissions);
        
        // Populate the authorization challenge data 
        OAuthAuthorizationData data = 

After Change


        final boolean preAuthorizationComplete = preAuthorizedToken != null
            && OAuthUtils.convertPermissionsToScopeList(preAuthorizedToken.getScopes()).containsAll(requestedScope);
        final boolean authorizationCanBeSkipped = preAuthorizationComplete 
            || canAuthorizationBeSkipped(client, userSubject, requestedScope, requestedPermissions);
        
        // Populate the authorization challenge data 
        OAuthAuthorizationData data =