From 4c21418ca8781d3f196d14fb5a56d99166b655da Mon Sep 17 00:00:00 2001
From: dushaniw <dushaniw@wso2.com>
Date: Wed, 5 Mar 2025 12:18:52 +0530
Subject: [PATCH] fix https://github.com/wso2/product-is/issues/20604

---
 .../org/wso2/carbon/identity/oauth2/util/OAuth2Util.java    | 6 ++++++
 1 file changed, 6 insertions(+)

diff --git a/components/org.wso2.carbon.identity.oauth/src/main/java/org/wso2/carbon/identity/oauth2/util/OAuth2Util.java b/components/org.wso2.carbon.identity.oauth/src/main/java/org/wso2/carbon/identity/oauth2/util/OAuth2Util.java
index b5e51ca62ef..261cbbfbf8d 100644
--- a/components/org.wso2.carbon.identity.oauth/src/main/java/org/wso2/carbon/identity/oauth2/util/OAuth2Util.java
+++ b/components/org.wso2.carbon.identity.oauth/src/main/java/org/wso2/carbon/identity/oauth2/util/OAuth2Util.java
@@ -4269,6 +4269,12 @@ public static boolean isValidTokenBinding(TokenBinding tokenBinding, HttpServlet
             return true;
         }
 
+        /* The request token binding type can't be validated, as it is an auto generated UUID to issue unique JWT tokens
+           by avoiding revocation of already issued JWT tokens. */
+        if (OAuthConstants.REQUEST_BINDING_TYPE.equals(tokenBinding.getBindingType())) {
+            return true;
+        }
+
         Optional<TokenBinder> tokenBinderOptional = OAuth2ServiceComponentHolder.getInstance()
                 .getTokenBinder(tokenBinding.getBindingType());
         if (!tokenBinderOptional.isPresent()) {