diff --git a/src/main/java/com/ysoft/geecon/dto/OAuthClient.java b/src/main/java/com/ysoft/geecon/dto/OAuthClient.java
index 75f58d7..3a1b014 100644
--- a/src/main/java/com/ysoft/geecon/dto/OAuthClient.java
+++ b/src/main/java/com/ysoft/geecon/dto/OAuthClient.java
@@ -9,6 +9,7 @@ public record OAuthClient(String clientId, String description, String clientSecr
     }
 
     public boolean validateSecret(String clientSecret) {
-        return Objects.equals(clientSecret, this.clientSecret);
+        // WARN: For open clients we purposefully accept any secrets
+        return this.clientSecret == null || Objects.equals(clientSecret, this.clientSecret);
     }
 }