Device Code Consent Page Got EMPTY SCOPE caused "Access Denied"

[Code-SkyWalker]

Describe the bug
using Demo.
when jump to "http://auth.javaboy.org:9000/activate?user_code=PFNW-XBMR" and then redirect to "http://auth.javaboy.org:9000/oauth2/consent?scope=&client_id=device-client-id&state=tOX0gviDMLqw5-qiCQbnryFS6_Z0hUQx7k1cng26tCI%3D&user_code=PFNW-XBMR", The scope is empty.

FOUND :
OAuth2DeviceVerificationEndpointFilter#doFilterInternal THE METHOD this.sendAuthorizationConsent(request, response, authenticationResult): "Set requestedScopes = authorizationConsentAuthentication.getRequestedScopes();" is empty;

Problems found in spring-security-oauth2-authorization-server: 1.1.7, 1.2.1, 1.3.1
Success in spring-security-oauth2-authorization-server 1.1.1

[jgrandja]

@Code-SkyWalker I tested the demo sample on 1.3.1 and it works as expected.

Please provide a minimal sample that reproduces this issue and I'll look into it further.

[Code-SkyWalker]

Sorry, Here is the minimal sample, if i did anything wrong please let me know

[jgrandja]

@Code-SkyWalker The sample you provided only contains the authorization server but it also needs to contain the oauth2 client (e.g. demo-client) to be a complete working sample.

Please provide a complete working sample, very similar to demo sample, that reproduces the issue. If there are certain steps that I need to follow to reproduce the issue, please document in the README.

[spring-projects-issues]

If you would like us to look at this issue, please provide the requested information. If the information is not provided within the next 7 days this issue will be closed.

[spring-projects-issues]

Closing due to lack of requested feedback. If you would like us to look at this issue, please provide the requested information and we will re-open the issue.