From 23e7c9eeaa9156f488db74d4f1c4f42a5bd1a86c Mon Sep 17 00:00:00 2001
From: kiruthiga1793 <pkiruthiga93@gmail.com>
Date: Thu, 30 Jan 2025 19:15:43 -0500
Subject: [PATCH 1/3] Add Twitter/X to CommonOAuth2Provider

Signed-off-by: kiruthiga1793 <pkiruthiga93@gmail.com>
---
 .../oauth2/client/CommonOAuth2Provider.java     | 17 +++++++++++++++++
 1 file changed, 17 insertions(+)

diff --git a/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java b/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
index c51b716e16..7ffffb3a59 100644
--- a/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
+++ b/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
@@ -87,6 +87,23 @@ public enum CommonOAuth2Provider {
 
 	},
 
+	X {
+
+		@Override
+		public Builder getBuilder(String registrationId) {
+			ClientRegistration.Builder builder = getBuilder(registrationId,
+					ClientAuthenticationMethod.CLIENT_SECRET_POST, DEFAULT_REDIRECT_URL);
+			builder.scope("users.read","tweet.read");
+			builder.authorizationUri("https://x.com/i/oauth2/authorize");
+			builder.tokenUri("https://api.x.com/2/oauth2/token");
+			builder.userInfoUri("https://api.x.com/2/users/me");
+			builder.userNameAttributeName("username");
+			builder.clientName("X");
+			return builder;
+		}
+
+	},
+
 	OKTA {
 
 		@Override

From f13836c9c86d2e4c3bda2f06fe00937a3c8dec0a Mon Sep 17 00:00:00 2001
From: Rob Winch <362503+rwinch@users.noreply.github.com>
Date: Wed, 7 May 2025 11:30:08 -0500
Subject: [PATCH 2/3] Add X to CommonOAuth2Provider Reference

Issue gh-16510

Signed-off-by: Rob Winch <362503+rwinch@users.noreply.github.com>
---
 docs/modules/ROOT/pages/reactive/oauth2/login/core.adoc | 2 +-
 docs/modules/ROOT/pages/servlet/oauth2/login/core.adoc  | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/docs/modules/ROOT/pages/reactive/oauth2/login/core.adoc b/docs/modules/ROOT/pages/reactive/oauth2/login/core.adoc
index 8ea1642c1b..a98676f846 100644
--- a/docs/modules/ROOT/pages/reactive/oauth2/login/core.adoc
+++ b/docs/modules/ROOT/pages/reactive/oauth2/login/core.adoc
@@ -153,7 +153,7 @@ A `ClientRegistration` can be initially configured using discovery of an OpenID
 [[webflux-oauth2-login-common-oauth2-provider]]
 == CommonOAuth2Provider
 
-`CommonOAuth2Provider` pre-defines a set of default client properties for a number of well known providers: Google, GitHub, Facebook, and Okta.
+`CommonOAuth2Provider` pre-defines a set of default client properties for a number of well known providers: Google, GitHub, Facebook, X, and Okta.
 
 For example, the `authorization-uri`, `token-uri`, and `user-info-uri` do not change often for a Provider.
 Therefore, it makes sense to provide default values in order to reduce the required configuration.
diff --git a/docs/modules/ROOT/pages/servlet/oauth2/login/core.adoc b/docs/modules/ROOT/pages/servlet/oauth2/login/core.adoc
index ffcecee7c9..4c179cc62a 100644
--- a/docs/modules/ROOT/pages/servlet/oauth2/login/core.adoc
+++ b/docs/modules/ROOT/pages/servlet/oauth2/login/core.adoc
@@ -153,7 +153,7 @@ You can initially configure a `ClientRegistration` by using discovery of an Open
 [[oauth2login-common-oauth2-provider]]
 == CommonOAuth2Provider
 
-`CommonOAuth2Provider` pre-defines a set of default client properties for a number of well known providers: Google, GitHub, Facebook, and Okta.
+`CommonOAuth2Provider` pre-defines a set of default client properties for a number of well known providers: Google, GitHub, Facebook, X, and Okta.
 
 For example, the `authorization-uri`, `token-uri`, and `user-info-uri` do not change often for a provider.
 Therefore, it makes sense to provide default values, to reduce the required configuration.

From 693a5beb2407bc9992acb60a7506271ebd94d422 Mon Sep 17 00:00:00 2001
From: Rob Winch <362503+rwinch@users.noreply.github.com>
Date: Wed, 7 May 2025 14:55:04 -0500
Subject: [PATCH 3/3] Format CommonOAuth2Provider

---
 .../security/config/oauth2/client/CommonOAuth2Provider.java     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java b/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
index 7ffffb3a59..96d0e51eac 100644
--- a/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
+++ b/config/src/main/java/org/springframework/security/config/oauth2/client/CommonOAuth2Provider.java
@@ -93,7 +93,7 @@ public enum CommonOAuth2Provider {
 		public Builder getBuilder(String registrationId) {
 			ClientRegistration.Builder builder = getBuilder(registrationId,
 					ClientAuthenticationMethod.CLIENT_SECRET_POST, DEFAULT_REDIRECT_URL);
-			builder.scope("users.read","tweet.read");
+			builder.scope("users.read", "tweet.read");
 			builder.authorizationUri("https://x.com/i/oauth2/authorize");
 			builder.tokenUri("https://api.x.com/2/oauth2/token");
 			builder.userInfoUri("https://api.x.com/2/users/me");