With the upgrade to Spring Framework 5.0 the password storage has undergone a major change to provide more secure defaults. This means that passwords are now stored in an encrypted way by default. Existing passwords in publisher.properties should all be prefixed with {noop} to ensure that any existing plain text passwords will still work. The encryption algorithm is Bcrypt.
Please update the oauth2.secret accordingly.
Example
In Publisher 4.0.x the oauth2.secret would look like this:
oauth2.secret=123
In Publisher 4.1 you have two choices, either set the password without encryption: